Security Advisory

CVE-2025-68935

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-25 20:05:48
Last updated 2025-12-26 14:51:29
Assigner mitre
State PUBLISHED

Description

ONLYOFFICE Docs before 9.2.1 allows XSS via the Font field for the Multilevel list settings window. This is related to DocumentServer.

← Browse all CVEs View on cve.org ↗