Logicaldoc: >> Logicaldoc >> 8.8.2 Security Vulnerabilities
LogicalDOC Enterprise and Community Edition (CE) are vulnerable to a stored (persistent, or "Type II") cross-site scripting (XSS) condition in the document version comments.
CVSS Score
5.4
EPSS Score
0.002
Published
2023-02-07
LogicalDOC Enterprise and Community Edition (CE) are vulnerable to a stored (persistent, or "Type II") cross-site scripting (XSS) condition in the in-app messaging system (both subject and message bodies).
CVSS Score
5.4
EPSS Score
0.002
Published
2023-02-07
LogicalDOC Enterprise is vulnerable to a stored (persistent, or "Type II") cross-site scripting (XSS) condition in the in-app chat system.
CVSS Score
5.4
EPSS Score
0.002
Published
2023-02-07
LogicalDOC Enterprise and Community Edition (CE) are vulnerable to a stored (persistent, or "Type II") cross-site scripting (XSS) condition in the document file name.
CVSS Score
5.4
EPSS Score
0.002
Published
2023-02-07