Show filters
5 Total Results
Displaying 1-5 of 5
Sort by:
Attacker Value
Unknown

CVE-2024-43234

Disclosure Date: December 16, 2024 (last updated December 20, 2024)
Authentication Bypass Using an Alternate Path or Channel vulnerability in WofficeIO Woffice allows Authentication Bypass.This issue affects Woffice: from n/a through 5.4.14.
0
0
Attacker Value
Unknown

CVE-2024-37470

Disclosure Date: November 01, 2024 (last updated November 02, 2024)
Missing Authorization vulnerability in WofficeIO Woffice Core allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Woffice Core: from n/a through 5.4.8.
0
0
Attacker Value
Unknown

CVE-2024-43153

Disclosure Date: August 13, 2024 (last updated August 14, 2024)
Improper Privilege Management vulnerability in WofficeIO Woffice allows Privilege Escalation.This issue affects Woffice: from n/a through 5.4.10.
0
0
Attacker Value
Unknown

CVE-2024-37472

Disclosure Date: July 04, 2024 (last updated July 20, 2024)
Cross Site Scripting (XSS) vulnerability in WofficeIO Woffice allows Reflected XSS.This issue affects Woffice: from n/a through 5.4.8.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2024-37471

Disclosure Date: July 04, 2024 (last updated July 20, 2024)
Cross Site Scripting (XSS) vulnerability in WofficeIO Woffice Core allows Reflected XSS.This issue affects Woffice Core: from n/a through 5.4.8.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0