2025-12-25 20:05:48
mitre
PUBLISHED
ONLYOFFICE Docs before 9.2.1 allows XSS via the Font field for the Multilevel list settings window. This is related to DocumentServer.