Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVSS: 8.0 · CWE: CWE-78

View on NVD

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVSS: 8.8 · CWE: CWE-502

View on NVD

PrestaShop is an open source e-commerce web application. Prior to 8.2.6 and 9.1.1, there is a stored Cross-Site Scripting (XSS) vulnerability in the PrestaShop back-office Customer Service view. An unauthenticated attacker can submit the public Contact Us form with a malicious email address. The payload is stored in the database and executed when a back-office employee opens the affected customer…

CVSS: 9.3 · CWE: CWE-79

View on NVD

Improper access control in Microsoft Office allows an unauthorized attacker to perform spoofing locally.

CVSS: 7.7 · CWE: CWE-284

View on NVD

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-122

View on NVD

Improper access control in Microsoft Office PowerPoint allows an authorized attacker to perform spoofing locally.

CVSS: 7.1 · CWE: CWE-284

View on NVD

Improper access control in Microsoft Office Word allows an authorized attacker to perform spoofing locally.

CVSS: 7.1 · CWE: CWE-284

View on NVD

Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally.

CVSS: 8.8 · CWE: CWE-284

View on NVD

Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVSS: 8.0 · CWE: CWE-502

View on NVD

Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-822

View on NVD

Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-416

View on NVD

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVSS: 8.8 · CWE: CWE-1220

View on NVD

Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-122

View on NVD

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-122

View on NVD

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-122

View on NVD

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-416

View on NVD

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.

CVSS: 7.8 · CWE: CWE-125

View on NVD

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-416

View on NVD

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVSS: 8.8 · CWE: CWE-502

View on NVD

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVSS: 8.8 · CWE: CWE-502

View on NVD

Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally.

CVSS: 8.8 · CWE: CWE-1220

View on NVD

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVSS: 8.8 · CWE: CWE-502

View on NVD

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVSS: 8.8 · CWE: CWE-502

View on NVD

Weaver (Fanwei) E-office versions prior to 10.0_20221201 contain an unauthenticated arbitrary file upload vulnerability in the OfficeServer.php endpoint that allows remote attackers to upload malicious files by sending multipart POST requests with arbitrary filenames and disguised content types. Attackers can upload PHP webshells to the Document directory and execute them via HTTP GET requests to…

CVSS: 9.8 · CWE: CWE-434

View on NVD

Unauthenticated Configuration File Modification Vulnerability in DRC Central Office Services (COS) allows an attacker to modify the server's configuration file, potentially leading to mass data exfiltration, malicious traffic interception, or disruption of testing services.

CVSS: 7.5 · CWE: N/A

View on NVD

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-416

View on NVD

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-822

View on NVD

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-416

View on NVD

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.

CVSS: 7.1 · CWE: CWE-125

View on NVD

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.156, 25.0.90, and 26.0.12, a vulnerability in the AbstractSettingsCollection model leads to insecure deserialization when these settings are loaded. By injecting a serialized FileCookieJar object into a setting string, an authenticated attacker can achieve Arbitrary File Write, leading directl…

CVSS: 9.9 · CWE: CWE-502

View on NVD

Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.158, 25.0.92, and 26.0.17, an authenticated SQL Injection vulnerability in the JMAP `Contact/query` endpoint allows any authenticated user with basic addressbook access to extract arbitrary data from the database — including active session tokens of other users. This enables full account takeo…

CVSS: 8.8 · CWE: CWE-89

View on NVD

PrestaShop is an open source e-commerce web application. Versions prior to 8.2.5 and 9.1.0 are vulnerable to stored Cross-Site Scripting (stored XSS) vulnerabilities in the BO. An attacker who can inject data into the database, via limited back-office access or a previously existing vulnerability, can exploit unprotected variables in back-office templates. Versions 8.2.5 and 9.1.0 contain a fix.…

CVSS: 7.6 · CWE: CWE-79

View on NVD

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office Excel allows an unauthorized attacker to disclose information over a network.

CVSS: 7.5 · CWE: CWE-79

View on NVD

Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileges locally.

CVSS: 7.8 · CWE: CWE-190

View on NVD

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVSS: 8.8 · CWE: CWE-502

View on NVD

Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-822

View on NVD

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-822

View on NVD

Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-843

View on NVD

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-125

View on NVD

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-122

View on NVD

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Improper input validation in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVSS: 8.8 · CWE: CWE-20

View on NVD

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.

CVSS: 8.1 · CWE: CWE-79

View on NVD

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Law Office law-office allows PHP Local File Inclusion.This issue affects Law Office: from n/a through <= 3.3.0.

CVSS: 8.1 · CWE: CWE-98

View on NVD

U-Office Force developed by e-Excellence has a Insecure Deserialization vulnerability, allowing unauthenticated remote attackers to execute arbitrary code on the server by sending maliciously crafted serialized content.

CVSS: 9.8 · CWE: CWE-502

View on NVD

Group-Office is an enterprise customer relationship management and groupware tool. Versions prior to 26.0.9, 25.0.87, and 6.8.154 have an authenticated Remote Code Execution vulnerability in the TNEF attachment processing flow. The vulnerable path extracts attacker-controlled files from `winmail.dat` and then invokes `zip` with a shell wildcard (`*`). Because extracted filenames are attacker-cont…

CVSS: 8.8 · CWE: CWE-88

View on NVD

Group-Office is an enterprise customer relationship management and groupware tool. Versions prior to 26.0.8, 25.0.87, and 6.8.153 have a SQL Injection (SQLi) vulnerability, exploitable through the `advancedQueryData` parameter (`comparator` field) on an authenticated endpoint. The endpoint `index.php?r=email/template/emailSelection` processes `advancedQueryData` and forwards the SQL comparator wi…

CVSS: 8.8 · CWE: CWE-89

View on NVD

Office Product Key Finder 1.5.4 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the registration code input. Attackers can create a specially crafted text file and paste it into the 'Name and Key' field to trigger an application crash.

CVSS: 7.5 · CWE: CWE-120

View on NVD

Reliance on untrusted inputs in a security decision in Microsoft Office Word allows an unauthorized attacker to bypass a security feature locally.

CVSS: 7.8 · CWE: CWE-807

View on NVD

Deserialization of untrusted data in Microsoft Office Outlook allows an unauthorized attacker to perform spoofing over a network.

CVSS: 7.5 · CWE: CWE-502

View on NVD

Exposure of sensitive information to an unauthorized actor in Microsoft Office Outlook allows an unauthorized attacker to perform spoofing over a network.

CVSS: 7.5 · CWE: CWE-200

View on NVD

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to elevate privileges locally.

CVSS: 7.8 · CWE: CWE-122

View on NVD

Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.150, 25.0.82, and 26.0.5, there is a remote code execution (RCE) vulnerability in Group-Office. The endpoint email/message/tnefAttachmentFromTempFile directly concatenates the user-controlled parameter tmp_file into an exec() call. By injecting shell metacharacters into tmp_file, an authentica…

CVSS: 8.8 · CWE: CWE-78

View on NVD

Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Hancom Inc. Hancom Office 2018, Hancom Inc. Hancom Office 2020, Hancom Inc. Hancom Office 2022, Hancom Inc. Hancom Office 2024 allows File Content Injection.This issue affects Hancom Office 2018: before 10.0.0.12681; Hancom Office 2020: before 11.0.0.8916; Hancom Office 2022: before 12.0.0.4426; Hancom Office 2024: bef…

CVSS: 8.5 · CWE: CWE-843

View on NVD

Group-Office is an enterprise customer relationship management and groupware tool. Prior to 6.8.150, 25.0.82, and 26.0.5, the MaintenanceController exposes an action zipLanguage which takes a lang parameter and passes it directly to a system zip command via exec(). This can be combined with uploading a crafted zip file to achieve remote code execution. This vulnerability is fixed in 6.8.150, 25.0…

CVSS: 8.8 · CWE: CWE-88

View on NVD

Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a security feature locally.

CVSS: 7.8 · CWE: CWE-807

View on NVD

Buffer overflow in XPS font parse processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP230…

CVSS: 9.8 · CWE: CWE-787

View on NVD

Buffer overflow in Address Book attribute tag processing on Small Office Multifunction Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP230 Series…

CVSS: 9.8 · CWE: CWE-787

View on NVD

Buffer overflow in XPS font fpgm data processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LB…

CVSS: 9.8 · CWE: CWE-787

View on NVD

Buffer overflow in CPCA list processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP230 Seri…

CVSS: 9.8 · CWE: CWE-787

View on NVD

Invalid free in CPCA file deletion processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP23…

CVSS: 9.8 · CWE: CWE-763

View on NVD

Buffer overflow in XML processing of XPS file in Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP23…

CVSS: 9.8 · CWE: CWE-787

View on NVD

Buffer overflow in print job processing by WSD on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP2…

CVSS: 9.8 · CWE: CWE-787

View on NVD

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code over a network.

CVSS: 9.8 · CWE: CWE-502

View on NVD

Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-122

View on NVD

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-822

View on NVD

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-822

View on NVD

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-416

View on NVD

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-416

View on NVD

Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-20

View on NVD

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Improper access control in Microsoft Office Excel allows an unauthorized attacker to bypass a security feature locally.

CVSS: 7.8 · CWE: CWE-284

View on NVD

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-822

View on NVD

Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVSS: 8.8 · CWE: CWE-89

View on NVD

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-125

View on NVD

Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-125

View on NVD

Untrusted search path in Microsoft Office allows an unauthorized attacker to execute code locally.

CVSS: 7.0 · CWE: CWE-426

View on NVD

Pexip Infinity 15.0 through 38.0 before 38.1 has Improper Access Control in the Secure Scheduler for Exchange service, when used with Office 365 Legacy Exchange Tokens. This allows a remote attacker to read potentially sensitive data and excessively consume resources, leading to a denial of service.

CVSS: 8.2 · CWE: CWE-863

View on NVD

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to execute arbitrary code. This vulnerability affects both the Mobile User VPN with IKEv2 and the Branch Office VPN using IKEv2 when configured with a dynamic gateway peer.This vulnerability affects Fireware OS 11.10.2 up to and including 11.12.4_Update1, 12.0 up to and including 12.11.5 and…

CVSS: 9.8 · CWE: CWE-787

View on NVD

Improper neutralization of input during web page generation ('cross-site scripting') in Office Out-of-Box Experience allows an unauthorized attacker to perform spoofing over a network.

CVSS: 8.2 · CWE: CWE-79

View on NVD

Ibexa is a composable end-to-end DXP (Digital Experience Platform). Versions 5.0.0-beta1 through 5.0.3 do not have password validation. During the transition from v4 to v5 an error was introduced into validation code which causes the validation of the previous password not to run as expected. This makes it possible for a logged in user to change their password in the back office without knowing t…

CVSS: 8.5 · CWE: CWE-620

View on NVD

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.

CVSS: 8.8 · CWE: CWE-79

View on NVD

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-125

View on NVD

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Use after free in Microsoft Office Outlook allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-822

View on NVD

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-126

View on NVD

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVSS: 7.8 · CWE: CWE-416

View on NVD

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVSS: 8.4 · CWE: CWE-416

View on NVD