![]() ![]()
Microsoft Office Information Disclosure Vulnerability. Information disclosure vulnerability in the system configuration of Cybozu Office 10.0.0 to 10.8.5 allows a remote attacker to obtain the data of the product via unspecified vectors.Ĭross-site scripting vulnerability in the specific parameters of Cybozu Office 10.0.0 to 10.8.5 allows a remote attacker to inject an arbitrary script via unspecified vectors. There are currently no known workarounds available. richdocuments versions 6.0.0, 5.0.4 and 4.2.6 contain a fix for this issue. Prior to versions 6.0.0, 5.0.4, and 4.2.6, a user could be tricked into working against a remote Office by sending them a federated share. Richdocuments is the repository for NextCloud Collabra, the app for Nextcloud Office collaboration. This issue affects: The Document Foundation LibreOffice 7.4 versions prior to 7.4.1 7.3 versions prior to 7.3.6. ![]() Which when clicked on, or activated by document events, could result in arbitrary script execution without warning. In the affected versions of LibreOffice links using that scheme could be constructed to call internal macros with arbitrary arguments. An additional scheme '' specific to LibreOffice was added. LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. HTTP header injection vulnerability in Cybozu Office 10.0.0 to 10.8.5 may allow a remote attacker to obtain and/or alter the data of the product via unspecified vectors.īrowse restriction bypass vulnerability in Cabinet of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Cabinet via unspecified vectors. ![]() Operation restriction bypass vulnerability in Project of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to alter the data of Project via unspecified vectors. Operation restriction bypass vulnerability in Scheduler of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to alter the data of Scheduler via unspecified vectors. ![]() Microsoft Office Security Feature Bypass Vulnerability.īrowse restriction bypass vulnerability in Address Book of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Address Book via unspecified vectors.Ĭross-site scripting vulnerability in the specific parameters of Cybozu Office 10.0.0 to 10.8.5 allows remote attackers to inject an arbitrary script via unspecified vectors. A victim would need to access a malicious file to trigger this vulnerability. #MICROSOFT OFFICE XP PROFESSIONAL FRONTPAGE THAI EDITION CODE#A specially-crafted malformed file can cause memory corruption by using memory before buffer start, which can lead to code execution. #MICROSOFT OFFICE XP PROFESSIONAL FRONTPAGE THAI EDITION PATCH#Lanling OA Landray Office Automation (OA) internal patch number #133383/#137780 contains an arbitrary file read vulnerability via the component /sys/ui/extend/varkind/custom.jsp.Ī buffer underflow vulnerability exists in the way Hword of Hancom Office 2020 version 11. Affected products are bundled with the following product series: Office and Office Integrated Software, ATOK, Hanako, JUST PDF, Shuriken, Homepage Builder, JUST School, JUST Smile Class, JUST Smile, JUST Frontier, JUST Jump, and Tri-De DetaProtect. #MICROSOFT OFFICE XP PROFESSIONAL FRONTPAGE THAI EDITION WINDOWS#Since the affected product starts another program with an unquoted file path, a malicious file may be executed with the privilege of the Windows service if it is placed in a certain path. #MICROSOFT OFFICE XP PROFESSIONAL FRONTPAGE THAI EDITION UPDATE#SQL injection vulnerability exists in the school information query interface (repschoolproj.php) of the EMS 6.2 system of the Office of the Thai Basic Education Commission, which can lead to data leakage.Īn unquoted search path vulnerability exists in 'JustSystems JUST Online Update for J-License' bundled with multiple products for corporate users as in Ichitaro through Pro5 and others. This CVE ID is unique from CVE-2022-38010. Microsoft Office Visio Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-37963. Microsoft Office Remote Code Execution Vulnerability. Microsoft Office Graphics Remote Code Execution Vulnerability. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |