CVE-2026-46722

The OOXML parsing of the file indexer does not disable external entity resolution. A crafted xlsx or pptx document placed in an indexed directory can cause local files to be read or outbound HTTP requests to be performed, with the retrieved content being written to the search index...

CVE-2026-4430

CVE-2026-4430 is an out-of-bounds write in LibreOffice triggered by opening OOXML documents with malformed encryption parameters. Affected releases: LibreOffice 26.2 before 26.2.3 and 25.8 before 25.8.7. Debian security advisory DSA-6251-1 confirms a buffer overflow could cause an out-of-bounds w...

GHSA-RM4C-XJ6X-49MW Gotenberg has a Server-Side Request Forgery (SSRF) Issue

Summary The SSRF hardening shipped in v8.31.0 only covers outbound URLs that Gotenberg's Go code handles — Chromium asset fetches, webhook delivery, and download-from. The LibreOffice conversion endpoint /forms/libreoffice/convert passes uploaded documents directly to LibreOffice without inspecti...

CVE-2025-64401 Apache OpenOffice: Remote documents loaded without prompt via IFrame

Apache OpenOffice documents can contain links. A missing Authorization vulnerability in Apache OpenOffice allowed an attacker to craft a document that would cause external links to be loaded without prompt. In the affected versions of Apache OpenOffice, documents that used "floating frames" linke...

EUVD-2018-3789

Malware in sbrugna...

CVE-2025-10777

A flaw has been found in JSC R7 R7-Office Document Server up to 20250820. Impacted is an unknown function of the file /downloadas/. Executing manipulation of the argument cmd can lead to path traversal. The attack can be launched remotely. Upgrading to version 2025.3.1.923 is recommended to addre...

Purgalicious VBA: Macro Obfuscation With VBA Purging

Malicious Office documents remain a favorite technique for every type of threat actor, from red teamers to FIN groups to APTs. In this blog post, we will discuss "VBA Purging", a technique we have increasingly observed in the wild and that was first publicly documented by Didier Stevens in Februa...

OPEN OFFICE suffers from a denial of service vulnerability (CNVD-2020-48557)

OPEN OFFICE is a set of cross-platform office software, can be executed on WINDOWS, LINUX, MACOS, X X11 and SOLARIS and other operating systems, and each of the major office software suite is compatible with a lot of office software are based on it for secondary development. A denial of service...

Denial of Service Vulnerability in OPEN OFFICE

OPEN OFFICE is a set of cross-platform office software, can be executed on WINDOWS, LINUX, MACOS, X X11 and SOLARIS and other operating systems, and each of the major office software suite is compatible with a lot of office software are based on it for secondary development. A denial of service...

OPEN OFFICE suffers from a denial of service vulnerability (CNVD-2020-48556)

OPEN OFFICE is a set of cross-platform office software, can be executed on WINDOWS, LINUX, MACOS, X X11 and SOLARIS and other operating systems, and each of the major office software suite is compatible with a lot of office software are based on it for secondary development. A denial of service...

The vulnerability of the OpenOffice office suite arises from incorrect restrictions on path names to restricted directories. This allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the OpenOffice office suite is related to a recompilation error through “.. two dots” in files where the XSLT JAR filter is active. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

FOCA - Tool To Find Metadata And Hidden Information In The Documents

FOCA Fingerprinting Organizations with Collected Archives FOCA is a tool used mainly to findmetadata and hidden information in the documents it scans. These documents may be on web pages, and can be downloaded and analysed with FOCA. It is capable of analysing a wide variety of documents, with th...

UPDATE: FOCA v3.4.6.0

PenTestIT RSS Feed My last post about this Fingerprinting & Organisation with Collected Archives was almost two year ago. I also mentioned that this tool was open sourced. Now, FOCA v3.4.6.0 has been released! I missed a lot of the older updates to this tool. What is FOCA? FOCA stands for...

CVE-2018-11790

When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic Overflow at a string length calculation...

Buffer overflow

When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic Overflow at a string length calculation...

CVE-2018-11790

CVE-2018-11790 affects Apache OpenOffice 4.1.5 and earlier. The flaw is an arithmetic overflow in a string-length calculation when loading a document with an end-of-line termination smaller than the OS uses, triggered by handling virtual tables. Exploitation details are not explicitly provided in...

CVE-2018-11790

When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic Overflow at a string length calculation...

CVE-2018-11790

When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic Overflow at a string length calculation...

CVE-2018-11790

When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic Overflow at a string length calculation...

PT-2018-2622 · Apache +1 · Apache Openoffice +2

Name of the Vulnerable Software and Affected Versions: Apache Open Office versions 4.1.5 and earlier Description: The issue is related to an arithmetic overflow that occurs when loading a document with a smaller end line termination than the operating system uses. This defect can cause the softwa...