Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-40864

Disclosure Date: September 10, 2021 (last updated November 28, 2024)
The Translate plugin 6.1.x through 6.3.x before 6.3.0.72 for ONLYOFFICE Document Server lacks escape calls for the msg.data and text fields.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0