Vulnerabilities > Logicaldoc > Logicaldoc > 7.7.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-08 | CVE-2020-10366 | Path Traversal vulnerability in Logicaldoc LogicalDoc before 8.3.3 allows /servlet.gupld Directory Traversal, a different vulnerability than CVE-2020-9423 and CVE-2020-10365. | 7.5 |
| 2020-03-18 | CVE-2020-9423 | Unrestricted Upload of File with Dangerous Type vulnerability in Logicaldoc LogicalDoc before 8.3.3 could allow an attacker to upload arbitrary files, leading to command execution or retrieval of data from the database. | 9.8 |
| 2020-03-18 | CVE-2020-10365 | SQL Injection vulnerability in Logicaldoc LogicalDoc before 8.3.3 allows SQL Injection. | 6.5 |