Command injection

A vulnerability was found in kalcaddle kodbox up to 1.48. It has been declared as critical. Affected by this vulnerability is the function check of the file plugins/officeViewer/controller/libreOffice/index.class.php. The manipulation of the argument soffice leads to command injection. The attack...

PT-2023-32789 · Kodbox · Kodbox

Name of the Vulnerable Software and Affected Versions: kalcaddle kodbox versions up to 1.48 Description: A critical issue has been found, affecting the function check of the file plugins/officeViewer/controller/libreOffice/index.class.php. The manipulation of the soffice argument leads to command...

kodbox command injection vulnerability

kodbox is a network file manager. A command injection vulnerability exists in kodbox version 1.48, which stems from a manipulation of the parameter soffice that results in command injection...

SUSE CVE-2010-3689

soffice in OpenOffice.org OOo 3.x before 3.3 places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...

LibreOffice 3.5.2.2 Memory Corruption

Exploit for multiple platform in category dos / poc -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ?php ------------------------------------------------------------------------------ LibreOffice 3.5.2.2 - soffice.exe\soffice.bin memory corruption author: shinnai mail: shinnaiatautisticidotorg site...

OpenOffice.org: soffice insecure LD_LIBRARY_PATH setting

soffice in OpenOffice.org OOo 3.x before 3.3 places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...

OpenOffice.org: soffice insecure LD_LIBRARY_PATH setting

soffice in OpenOffice.org OOo 3.x before 3.3 places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...