Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

205 matches found

RedhatCVE
RedhatCVEadded 2026/04/20 7:23 p.m.2 views

CVE-2026-6572

A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of the component fileUpload Endpoint. The manipulation of the argument fileUpload leads to improper authorization. Remot...

6.3CVSS5.2AI score0.00017EPSS
Exploits0References1
EUVD
EUVDadded 2026/04/19 3:30 p.m.0 views

EUVD-2026-23702

A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of the component fileUpload Endpoint. The manipulation of the argument fileUpload leads to improper authorization. Remot...

6.3CVSS5.2AI score0.00017EPSS
Exploits0References5
NVD
NVDadded 2026/04/19 1:16 p.m.1 views

CVE-2026-6572

A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of the component fileUpload Endpoint. The manipulation of the argument fileUpload leads to improper authorization. Remot...

6.3CVSS0.00017EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/19 12:15 p.m.1 views

CVE-2026-6572

A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of the component fileUpload Endpoint. The manipulation of the argument fileUpload leads to improper authorization. Remot...

6.3CVSS4.8AI score0.00017EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/04/19 12:15 p.m.24 views

CVE-2026-6572 Collabora KodExplorer fileUpload Endpoint share.class.php improper authorization

A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of the component fileUpload Endpoint. The manipulation of the argument fileUpload leads to improper authorization. Remot...

6.3CVSS0.00017EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/04/19 12:15 p.m.0 views

CVE-2026-6572 Collabora KodExplorer fileUpload Endpoint share.class.php improper authorization

A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of the component fileUpload Endpoint. The manipulation of the argument fileUpload leads to improper authorization. Remot...

6.3CVSS4.8AI score0.00017EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/04/19 12:0 a.m.2 views

PT-2026-33630

A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of the component fileUpload Endpoint. The manipulation of the argument fileUpload leads to improper authorization. Remot...

6.3CVSS5.2AI score0.00017EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/02/07 1:23 a.m.4 views

CVE-2026-23623

Collabora Online is a collaborative online office suite based on LibreOffice technology. Prior to Collabora Online Development Edition version 25.04.08.2 and prior to Collabora Online versions 23.05.20.1, 24.04.17.3, and 25.04.7.5, a user with view-only rights and no download privileges can obtai...

5.3CVSS5.2AI score0.00042EPSS
Exploits0References1
NVD
NVDadded 2026/02/06 12:15 a.m.3 views

CVE-2026-23623

Collabora Online is a collaborative online office suite based on LibreOffice technology. Prior to Collabora Online Development Edition version 25.04.08.2 and prior to Collabora Online versions 23.05.20.1, 24.04.17.3, and 25.04.7.5, a user with view-only rights and no download privileges can obtai...

5.3CVSS0.00042EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/02/05 11:38 p.m.2 views

CVE-2026-23623

Collabora Online is a collaborative online office suite based on LibreOffice technology. Prior to Collabora Online Development Edition version 25.04.08.2 and prior to Collabora Online versions 23.05.20.1, 24.04.17.3, and 25.04.7.5, a user with view-only rights and no download privileges can obtai...

5.3CVSS5.2AI score0.00042EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2026/02/05 11:38 p.m.8 views

CVE-2026-23623

CVE-2026-23623 affects Collabora Online and Collabora Online Development Edition. A user with view-only rights and no download privileges can obtain a local copy of a shared file. The vulnerability is triggered by pressing Ctrl+Shift+S, which initiates the file download process despite missing do...

5.3CVSS5.2AI score0.00042EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/02/05 11:38 p.m.2 views

CVE-2026-23623 Collabora Online vulnerable to Authorization Bypass

Collabora Online is a collaborative online office suite based on LibreOffice technology. Prior to Collabora Online Development Edition version 25.04.08.2 and prior to Collabora Online versions 23.05.20.1, 24.04.17.3, and 25.04.7.5, a user with view-only rights and no download privileges can obtai...

5.3CVSS5.2AI score0.00042EPSS
Exploits0References1
OSV
OSVadded 2026/02/05 11:38 p.m.3 views

CVE-2026-23623 Collabora Online vulnerable to Authorization Bypass

Collabora Online is a collaborative online office suite based on LibreOffice technology. Prior to Collabora Online Development Edition version 25.04.08.2 and prior to Collabora Online versions 23.05.20.1, 24.04.17.3, and 25.04.7.5, a user with view-only rights and no download privileges can obtai...

5.3CVSS5.2AI score0.00042EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/02/05 11:38 p.m.25 views

CVE-2026-23623 Collabora Online vulnerable to Authorization Bypass

Collabora Online is a collaborative online office suite based on LibreOffice technology. Prior to Collabora Online Development Edition version 25.04.08.2 and prior to Collabora Online versions 23.05.20.1, 24.04.17.3, and 25.04.7.5, a user with view-only rights and no download privileges can obtai...

5.3CVSS0.00042EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/02/05 12:0 a.m.1 views

PT-2026-6642

Name of the Vulnerable Software and Affected Versions Collabora Online versions prior to 23.05.20.1 Collabora Online versions prior to 24.04.17.3 Collabora Online versions prior to 25.04.7.5 Collabora Online Development Edition versions prior to 25.04.08.2 Description Collabora Online is a...

5.3CVSS5.4AI score0.00042EPSS
Exploits0References8
RedhatCVE
RedhatCVEadded 2026/01/09 9:27 a.m.4 views

CVE-2023-31145

Collabora Online is a collaborative online office suite based on LibreOffice technology. This vulnerability report describes a reflected XSS vulnerability with full CSP bypass in Nextcloud installations using the recommended bundle. The vulnerability can be exploited to perform a trivial account...

6.1CVSS5.8AI score0.01328EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 8:59 a.m.3 views

CVE-2023-49788

Collabora Online is a collaborative online office suite based on LibreOffice technology. Unlike a standalone dedicated Collabora Online server, the Built-in CODE Server richdocumentscode is run without chroot sandboxing. Vulnerable versions of the richdocumentscode app can be susceptible to attac...

7.2CVSS7.1AI score0.00076EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 8:59 a.m.4 views

CVE-2023-49782

Collabora Online is a collaborative online office suite based on LibreOffice technology. Users of Nextcloud with Collabora Online - Built-in CODE Server app can be vulnerable to attack via proxy.php. The bug was fixed in Collabora Online - Built-in CODE Server richdocumentscode release 23.5.601...

7.1CVSS6.9AI score0.00095EPSS
Exploits0References1
NVD
NVDadded 2025/12/03 7:15 p.m.1 views

CVE-2025-66208

Collabora Online - Built-in CODE Server richdocumentscode provides a built-in server with all of the document editing features of Collabora Online. In versions prior to 25.04.702, Collabora Online has a Configuration-Dependent RCE OS Command Injection in richdocumentscode proxy. Users of Nextclou...

9.8CVSS0.00317EPSS
Exploits0References1
OSV
OSVadded 2025/12/03 6:25 p.m.0 views

CVE-2025-66208 Configuration-Dependent RCE (OS Command Injection) in richdocumentscode proxy

Collabora Online - Built-in CODE Server richdocumentscode provides a built-in server with all of the document editing features of Collabora Online. In versions prior to 25.04.702, Collabora Online has a Configuration-Dependent RCE OS Command Injection in richdocumentscode proxy. Users of Nextclou...

9.2CVSS5.8AI score0.00317EPSS
Exploits0References3
Rows per page
Query Builder