Google Translate
1 CVEs
product
Monthly
The Translate plugin 6.1.x through 6.3.x before 6.3.0.72 for ONLYOFFICE Document Server lacks escape calls for the msg.data and text fields. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Information Disclosure
Google Translate
NVD
GitHub
CVSS 3.1
9.8
EPSS
2.3%
EPSS 2%
CVSS 9.8
CRITICAL
PATCH
Act Now
The Translate plugin 6.1.x through 6.3.x before 6.3.0.72 for ONLYOFFICE Document Server lacks escape calls for the msg.data and text fields. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Information Disclosure
Google Translate
NVD
GitHub