Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

online — Vulnerabilities & Security Advisories 16

All 16 CVE vulnerabilities found in online, with AI-generated Chinese analysis, references, and POCs.

Vendor: CollaboraOnline

CVE IDTitleCVSSSeverityPublished
CVE-2026-23623 Collabora Online vulnerable to Authorization Bypass CWE-285 5.3 Medium2026-02-05
CVE-2025-66208 Configuration-Dependent RCE (OS Command Injection) in richdocumentscode proxy CWE-78 8.8AIHighAI2025-12-03
CVE-2025-27791 Collabora Online Vulnerable to Arbitrary File Write CWE-23 6.8AIMediumAI2025-04-15
CVE-2025-24796 Remote Code Execution within Collabora Online jail with Macros Enabled CWE-829 9.8 -2025-03-06
CVE-2024-45045 JavaScript Injection via url encoded values in links in Collabora Office Android CWE-84 6.3 Medium2024-08-29
CVE-2024-37311 Collabora Online's remote host TLS certificates are not fully verified CWE-295 8.2 High2024-08-23
CVE-2024-29182 Collabora Online Stored Cross-Site-Scripting vulnerability via tooltip CWE-79 6.1 Medium2024-04-04
CVE-2024-25114 Sensitive Information Disclosure (JailID) to users in Collabora Online CWE-200 2.6 Low2024-03-11
CVE-2023-49782 Cross-Site-Scripting vulnerability in error message passing in richdocumentscode CWE-79 7.1 High2023-12-08
CVE-2023-49788 Improper handling of browser-side provided input in richdocuments path handling CWE-501 7.2 High2023-12-08
CVE-2023-48314 Unescaped passing of the request URL in Collabora Online CWE-79 7.1 High2023-12-01
CVE-2023-34088 Collabora Online has Stored Cross-Site-Scripting vulnerability in admin interface CWE-79 8.7 High2023-05-31
CVE-2023-31145 Reflected XSS vulnerability in CollaboraOnline CWE-79 4.3 Medium2023-05-15
CVE-2021-43817 Reflected Cross-Site-Scripting vulnerability in Collabora Online CWE-79 8.2 High2021-12-13
CVE-2021-32745 Reflected Cross-Site-Scripting vulnerability CWE-79 7.3 High2021-07-21
CVE-2021-32744 Unauthenticated attacker could gain access to currently open files CWE-639 9.8 Critical2021-07-21

All 16 known CVE vulnerabilities affecting online with full Chinese analysis, references, and POCs where available.