all InfoSec news
Multiple Document Management XSS Flaw Let Attackers Access Sensitive Documents
Cyber Security News cybersecuritynews.com
Rapid7 uncovered a number of vulnerabilities with on-premises installations of open-source and freemium Document Management System (DMS) services from four different vendors: LogicalDOC, Mayan, ONLYOFFICE, and OpenKM. The eight vulnerabilities, according to Rapid7, provide a mechanism by which an attacker can convince a human operator to save a malicious document on the platform and, after […]
The post <strong>Multiple Document Management XSS Flaw Let Attackers Access Sensitive Documents</strong> appeared first on Cyber Security News.
access attackers dms document documents flaw freemium human malicious management platform rapid7 services system vendors vulnerabilities vulnerability xss xss flaw