threat
engine
.sh
Back
·
··:··
Home
/
Product
/
onlyoffice document server
Product
onlyoffice document server
26 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-68936
< 9.2.1
ONLYOFFICE Docs before 9.2.1 allows XSS via the Color theme name. This is related to DocumentServer.
6.4
MEDIUM
CVE-2025-68935
< 9.2.1
ONLYOFFICE Docs before 9.2.1 allows XSS via the Font field for the Multilevel list settings window. This is related to DocumentSer
6.4
MEDIUM
CVE-2023-46988
>= 7.4.0 and < 8.0.1
Path Traversal vulnerability in ONLYOFFICE Document Server before v8.0.1 allows a remote attacker to copy arbitrary files by manip
6.7
MEDIUM
CVE-2023-50883
< 8.0.1
ONLYOFFICE Docs before 8.0.1 allows XSS because a macro is an immediately-invoked function expression (IIFE), and therefore a sand
6.1
MEDIUM
CVE-2023-30188
>= 4.0.3 and <= 7.3.2
Memory Exhaustion vulnerability in ONLYOFFICE Document Server 4.0.3 through 7.3.2 allows remote attackers to cause a denial of ser
7.5
HIGH
CVE-2023-30187
>= 4.0.3 and <= 7.3.2
An out of bounds memory access vulnerability in ONLYOFFICE DocumentServer 4.0.3 through 7.3.2 allows remote attackers to run arbit
9.8
CRITICAL
CVE-2023-30186
>= 4.0.3 and <= 7.3.2
A use after free issue discovered in ONLYOFFICE DocumentServer 4.0.3 through 7.3.2 allows remote attackers to run arbitrary code v
9.8
CRITICAL
CVE-2022-48422
<= 7.3.0
ONLYOFFICE Docs through 7.3 on certain Linux distributions allows local users to gain privileges via a Trojan horse libgcc_s.so.1
7.8
HIGH
CVE-2022-29777
<= 6.0.0
Onlyoffice Document Server v6.0.0 and below and Core 6.1.0.26 and below were discovered to contain a heap overflow via the compone
9.8
CRITICAL
CVE-2022-29776
<= 6.0.0
Onlyoffice Document Server v6.0.0 and below and Core 6.1.0.26 and below were discovered to contain a stack overflow via the compon
9.8
CRITICAL
CVE-2022-24229
< 7.0.0
A cross-site scripting (XSS) vulnerability in ONLYOFFICE Document Server Example before v7.0.0 allows remote attackers inject arbi
6.1
MEDIUM
CVE-2021-25833
>= 4.2.0.71 and <= 5.6.0.21
A file extension handling issue was found in [server] module of ONLYOFFICE DocumentServer v4.2.0.71-v5.6.0.21. The file extension
9.8
CRITICAL
CVE-2021-25832
>= 4.0.0-9 and <= 6.0.0
A heap buffer overflow vulnerability inside of BMP image processing was found at [core] module of ONLYOFFICE DocumentServer v4.0.0
9.8
CRITICAL
CVE-2021-25831
>= 4.0.0-9 and <= 5.6.3
A file extension handling issue was found in [core] module of ONLYOFFICE DocumentServer v4.0.0-9-v5.6.3. An attacker must request
9.8
CRITICAL
CVE-2021-25830
>= 4.2.0.236 and <= 5.6.4.13
A file extension handling issue was found in [core] module of ONLYOFFICE DocumentServer v4.2.0.236-v5.6.4.13. An attacker must req
9.8
CRITICAL
CVE-2021-25829
>= 4.0.0-9 and <= 5.6.3
An improper binary stream data handling issue was found in the [core] module of ONLYOFFICE DocumentServer v4.0.0-9-v5.6.3. Using t
7.5
HIGH
CVE-2021-3199
< 5.6.3
Directory traversal with remote code execution can occur in /upload in ONLYOFFICE Document Server before 5.6.3, when JWT is used,
9.8
CRITICAL
CVE-2020-11537
all versions
A SQL Injection issue was discovered in ONLYOFFICE Document Server 5.5.0. An attacker can execute arbitrary SQL queries via inject
9.8
CRITICAL
CVE-2020-11536
all versions
An issue was discovered in ONLYOFFICE Document Server 5.5.0. An attacker can craft a malicious .docx file, and exploit the unzip f
9.8
CRITICAL
CVE-2020-11535
all versions
An issue was discovered in ONLYOFFICE Document Server 5.5.0. An attacker can craft a malicious .docx file, and exploit XML injecti
9.8
CRITICAL
CVE-2020-11534
all versions
An issue was discovered in ONLYOFFICE Document Server 5.5.0. An attacker can craft a malicious .docx file, and exploit the NSFileD
9.8
CRITICAL
CVE-2006-1788
all versions
Adobe Document Server for Reader Extensions 6.0, during log on, provides different error messages depending on whether the user ID
CVE-2006-1787
all versions
Adobe Document Server for Reader Extensions 6.0 includes a user's session (jsession) ID in the HTTP Referer header, which allows r
CVE-2006-1786
all versions
Cross-site scripting (XSS) vulnerability in Adobe Document Server for Reader Extensions 6.0 allows remote attackers to inject arbi
CVE-2006-1785
all versions
Adobe Document Server for Reader Extensions 6.0 allows remote authenticated users to inject arbitrary web script via a leading (1)
CVE-2006-1182
all versions
Adobe Graphics Server 2.0 and 2.1 (formerly AlterCast) and Adobe Document Server (ADS) 5.0 and 6.0 allows local users to read file
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin