Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

ONLYOFFICE Docs — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in ONLYOFFICE Docs, with AI-generated Chinese analysis, references, and POCs.

Vendor: onlyoffice

CVE IDTitleCVSSSeverityPaused
CVE-2025-6380 ONLYOFFICE Docs 1.1.0 - 2.2.0 - Missing Authorization to Unauthenticated Privilege Escalation via callback Function CWE-862 9.8 Critical2025-07-24
CVE-2024-11450 ONLYOFFICE Docs <= 2.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CWE-79 6.4 Medium2024-12-06

All 2 known CVE vulnerabilities affecting ONLYOFFICE Docs with full Chinese analysis, references, and POCs where available.