CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-10366
https://notcve.org/view.php?id=CVE-2020-10366
07 Apr 2020 — LogicalDoc before 8.3.3 allows /servlet.gupld Directory Traversal, a different vulnerability than CVE-2020-9423 and CVE-2020-10365. LogicalDoc versiones anteriores a 8.3.3, permite un Salto de Directorio del archivo /servlet.gupld, una vulnerabilidad diferente de CVE-2020-9423 y CVE-2020-10365. • https://sourceforge.net/p/logicaldoc/code/HEAD/tree/community/logicaldoc/trunk/ReleaseNotes.txt • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-10365
https://notcve.org/view.php?id=CVE-2020-10365
18 Mar 2020 — LogicalDoc before 8.3.3 allows SQL Injection. LogicalDoc populates the list of available documents by querying the database. This list could be filtered by modifying some of the parameters. Some of them are not properly sanitized which could allow an authenticated attacker to perform arbitrary queries to the database. LogicalDoc versiones anteriores a 8.3.3, permite una Inyección SQL. • https://www.coresecurity.com/advisories/logicaldoc-virtual-appliance-multiple-vulnerabilities • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 1CVE-2020-9423
https://notcve.org/view.php?id=CVE-2020-9423
18 Mar 2020 — LogicalDoc before 8.3.3 could allow an attacker to upload arbitrary files, leading to command execution or retrieval of data from the database. LogicalDoc provides a functionality to add documents. Those documents could then be used for multiple tasks, such as version control, shared among users, applying tags, etc. This functionality could be abused by an unauthenticated attacker to upload an arbitrary file in a restricted folder. This would lead to the executions of malicious commands with root privileges... • https://www.coresecurity.com/advisories/logicaldoc-virtual-appliance-multiple-vulnerabilities • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-1000021
https://notcve.org/view.php?id=CVE-2017-1000021
13 Jul 2017 — LogicalDoc Community Edition 7.5.3 and prior is vulnerable to XXE when indexing XML documents. LogicalDoc Community Edition versión 7.5.3 y anteriores son vulnerable a ataques de tipo XXE durante el indexado de documentos XML. • http://blog.randorisec.fr/logicaldoc-from-guest-to-root • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2017-1000023
https://notcve.org/view.php?id=CVE-2017-1000023
13 Jul 2017 — LogicalDoc Community Edition 7.5.3 and prior is vulnerable to an XSS when using preview on HTML document. LogicalDoc Community Edition versión 7.5.3 y anteriores son vulnerables a un Cross-Site Scripting (XSS) cuando se usa la vista previa en un documento HTML. • http://blog.randorisec.fr/logicaldoc-from-guest-to-root • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-1000022
https://notcve.org/view.php?id=CVE-2017-1000022
13 Jul 2017 — LogicalDoc Community Edition 7.5.3 and prior contain an Incorrect access control which could leave to privilege escalation. LogicalDoc Community Edition versión 7.5.3 y anteriores contienen un control de acceso incorrecto que podría conllevar a una escalada de privilegios. • http://blog.randorisec.fr/logicaldoc-from-guest-to-root • CWE-732: Incorrect Permission Assignment for Critical Resource •