Unrated severityNVD Advisory· Published Dec 8, 2023· Updated Aug 2, 2024
Cross-Site-Scripting vulnerability in error message passing in richdocumentscode
CVE-2023-49782
Description
Collabora Online is a collaborative online office suite based on LibreOffice technology. Users of Nextcloud with Collabora Online - Built-in CODE Server app can be vulnerable to attack via proxy.php. The bug was fixed in Collabora Online - Built-in CODE Server (richdocumentscode) release 23.5.601. Users are advised to upgrade. There are no known workarounds for this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <23.5.601
- Range: < 23.5.601
Patches
Vulnerability mechanics
References
2- apps.nextcloud.com/apps/richdocumentscodemitrex_refsource_MISC
- github.com/CollaboraOnline/online/security/advisories/GHSA-8xm5-pgfr-8mjrmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.