CVE-2023-50883
published 2024-09-09CVE-2023-50883: ONLYOFFICE Docs before 8.0.1 allows XSS because a macro is an immediately-invoked function expression (IIFE), and therefore a sandbox escape is possible by…
PriorityP425medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EPSS
0.57%
43.0th percentile
ONLYOFFICE Docs before 8.0.1 allows XSS because a macro is an immediately-invoked function expression (IIFE), and therefore a sandbox escape is possible by directly calling the constructor of the Function object. NOTE: this issue exists because of an incorrect fix for CVE-2021-43446.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| onlyoffice | document_server | < 8.0.1 | 8.0.1 |
| onlyoffice | onlyoffice | < 8.1.0 | 8.1.0 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-54cp-27ww-4fm3: ONLYOFFICE Docs before 8
ghsa_unreviewed·2024-09-09·CVSS 6.1
CVE-2024-44085 [MEDIUM] CWE-79 GHSA-54cp-27ww-4fm3: ONLYOFFICE Docs before 8
ONLYOFFICE Docs before 8.1.0 allows XSS via a GeneratorFunction Object attack against a macro. This is related to use of an immediately-invoked function expression (IIFE) for a macro. NOTE: this issue exists because of an incorrect fix for CVE-2021-43446 and CVE-2023-50883.
GHSA
GHSA-rcqr-8g6q-fmc3: ONLYOFFICE Docs before 8
ghsa_unreviewed·2024-09-09·CVSS 6.1
CVE-2023-50883 [MEDIUM] CWE-79 GHSA-rcqr-8g6q-fmc3: ONLYOFFICE Docs before 8
ONLYOFFICE Docs before 8.0.1 allows XSS because a macro is an immediately-invoked function expression (IIFE), and therefore a sandbox escape is possible by directly calling the constructor of the Function object. NOTE: this issue exists because of an incorrect fix for CVE-2021-43446.
No detection rules found.
No public exploits indexed.
Wiz
CVE-2025-68935 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.7
CVE-2025-68935 [MEDIUM] CVE-2025-68935 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-68935 :
ONLYOFFICE DocumentServer vulnerability analysis and mitigation
ONLYOFFICE Docs before 9.2.1 allows XSS via the Font field for the Multilevel list settings window. This is related to DocumentServer.
Source : NVD
## 6.1
Score
Published December 25, 2025
Severity MEDIUM
CNA Score 6.4
Affected Technologies
ONLYOFFICE DocumentServer
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 2.1
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:onlyoffice:document_server
Sources
Windows Severity MEDIUM Has Fix Added at: Dec 28, 2025
Windows Severity MEDIUM Has Fix Added at: Jan 04, 2026
## Get a CVE risk assessment
Get a prioritized view of CVE
Wiz
CVE-2025-68917 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.7
CVE-2025-68917 [MEDIUM] CVE-2025-68917 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-68917 :
ONLYOFFICE DocumentServer vulnerability analysis and mitigation
ONLYOFFICE Docs before 9.2.1 allows XSS in the textarea of the comment editing form. This is related to DocumentServer.
Source : NVD
## 6.4
Score
Published December 24, 2025
Severity MEDIUM
CNA Score 6.4
Affected Technologies
ONLYOFFICE DocumentServer
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 13.1
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:onlyoffice:document_server
Sources
NVD
Windows Severity MEDIUM Has Fix Added at: Dec 26, 2025
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just
Wiz
CVE-2025-68936 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.7
CVE-2025-68936 [MEDIUM] CVE-2025-68936 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-68936 :
ONLYOFFICE DocumentServer vulnerability analysis and mitigation
ONLYOFFICE Docs before 9.2.1 allows XSS via the Color theme name. This is related to DocumentServer.
Source : NVD
## 6.1
Score
Published December 25, 2025
Severity MEDIUM
CNA Score 6.4
Affected Technologies
ONLYOFFICE DocumentServer
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 2.1
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:onlyoffice:document_server
Sources
Windows Severity MEDIUM Has Fix Added at: Dec 28, 2025
Windows Severity MEDIUM Has Fix Added at: Jan 04, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your cloud—so you can focus o
2024-09-09
Published