8 matches found
EUVD-2023-38978
Malicious code in bioql PyPI...
CVE-2023-34939
Onlyoffice Community Server before v12.5.2 was discovered to contain a remote code execution RCE vulnerability via the component UploadProgress.ashx...
CVE-2023-34939
Onlyoffice Community Server before v12.5.2 was discovered to contain a remote code execution RCE vulnerability via the component UploadProgress.ashx...
CVE-2023-34939
Onlyoffice Community Server before v12.5.2 was discovered to contain a remote code execution RCE vulnerability via the component UploadProgress.ashx...
CVE-2023-34939
Onlyoffice Community Server before v12.5.2 was discovered to contain a remote code execution RCE vulnerability via the component UploadProgress.ashx...
CVE-2023-34939
Onlyoffice Community Server before v12.5.2 was discovered to contain a remote code execution RCE vulnerability via the component UploadProgress.ashx...
CVE-2023-34939
The CVE-2023-34939 issue affects Onlyoffice Community Server prior to v12.5.2, with a remote code execution (RCE) flaw in the UploadProgress.ashx component. The root cause is described as errors in handling the relative path to a directory with limited access, enabling an attacker to execute arbi...
PT-2023-4141 · Onlyoffice · Onlyoffice Community Server
Name of the Vulnerable Software and Affected Versions: Onlyoffice Community Server versions prior to 12.5.2 Description: The issue is related to a remote code execution vulnerability in the UploadProgress.ashx component. It is associated with errors in handling the relative path to a directory wi...