2 matches found
CVE-2023-30186
The CVE-2023-30186 issue affects ONLYOFFICE DocumentServer versions 4.0.3 through 7.3.2, due to a use-after-free in the JavaScript File Handler component that allows remote attackers to execute arbitrary code by delivering a crafted JavaScript file. Affected product: ONLYOFFICE DocumentServer; vu...
CVE-2023-30186
A use after free issue discovered in ONLYOFFICE DocumentServer 4.0.3 through 7.3.2 allows remote attackers to run arbitrary code via crafted JavaScript file...