Wofficeio Woffice
5 CVEs affecting Wofficeio Woffice. Latest disclosed: 2026-07-01. Critical: 2, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-43234 | Critical | 9.8 | 2024-12-16 | Authentication Bypass Using an Alternate Path or Channel vulnerability in WofficeIO Woffice woffice allows Authentication Bypass.This issue affects Woffice: fr… |
CVE-2024-43153 | Critical | 9.8 | 2024-08-13 | Incorrect Privilege Assignment vulnerability in WofficeIO Woffice woffice.This issue affects Woffice: from n/a through <= 5.4.10. |
CVE-2025-67918 | High | 7.1 | 2026-01-08 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WofficeIO Woffice woffice allows Reflected XSS.This issue… |
CVE-2024-37472 | High | 7.1 | 2024-07-04 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WofficeIO Woffice woffice.This issue affects Woffice: fro… |
CVE-2026-27435 | Medium | 5.3 | 2026-07-01 | Missing Authorization vulnerability in WofficeIO Woffice allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Woffice… |