CVE-2021-43446
published 2023-01-23CVE-2021-43446: ONLYOFFICE all versions as of 2021-11-08 is vulnerable to Cross Site Scripting (XSS). The "macros" feature of the document editor allows malicious cross site…
PriorityP423medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EPSS
0.82%
52.8th percentile
ONLYOFFICE all versions as of 2021-11-08 is vulnerable to Cross Site Scripting (XSS). The "macros" feature of the document editor allows malicious cross site scripting payloads to be used.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| onlyoffice | document_server | < 8.0.1 | 8.0.1 |
| onlyoffice | onlyoffice | < 8.1.0 | 8.1.0 |
| onlyoffice | server | <= 7.0.0.49 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-54cp-27ww-4fm3: ONLYOFFICE Docs before 8
ghsa_unreviewed·2024-09-09·CVSS 6.1
CVE-2024-44085 [MEDIUM] CWE-79 GHSA-54cp-27ww-4fm3: ONLYOFFICE Docs before 8
ONLYOFFICE Docs before 8.1.0 allows XSS via a GeneratorFunction Object attack against a macro. This is related to use of an immediately-invoked function expression (IIFE) for a macro. NOTE: this issue exists because of an incorrect fix for CVE-2021-43446 and CVE-2023-50883.
GHSA
GHSA-rcqr-8g6q-fmc3: ONLYOFFICE Docs before 8
ghsa_unreviewed·2024-09-09·CVSS 6.1
CVE-2023-50883 [MEDIUM] CWE-79 GHSA-rcqr-8g6q-fmc3: ONLYOFFICE Docs before 8
ONLYOFFICE Docs before 8.0.1 allows XSS because a macro is an immediately-invoked function expression (IIFE), and therefore a sandbox escape is possible by directly calling the constructor of the Function object. NOTE: this issue exists because of an incorrect fix for CVE-2021-43446.
GHSA
GHSA-5w4f-g47c-43mg: ONLYOFFICE all versions as of 2021-11-08 is vulnerable to Cross Site Scripting (XSS)
ghsa_unreviewed·2023-01-23
CVE-2021-43446 [MEDIUM] CWE-79 GHSA-5w4f-g47c-43mg: ONLYOFFICE all versions as of 2021-11-08 is vulnerable to Cross Site Scripting (XSS)
ONLYOFFICE all versions as of 2021-11-08 is vulnerable to Cross Site Scripting (XSS). The "macros" feature of the document editor allows malicious cross site scripting payloads to be used.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/ONLYOFFICE/serverhttps://labs.nettitude.com/blog/exploiting-onlyoffice-web-sockets-for-unauthenticated-remote-code-execution/https://onlyoffice.com/https://github.com/ONLYOFFICE/serverhttps://labs.nettitude.com/blog/exploiting-onlyoffice-web-sockets-for-unauthenticated-remote-code-execution/https://onlyoffice.com/
2023-01-23
Published