Vulnerabilities > Logicaldoc > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-03 | CVE-2020-13542 | Incorrect Default Permissions vulnerability in Logicaldoc 8.5.1 A local privilege elevation vulnerability exists in the file system permissions of LogicalDoc 8.5.1 installation. | 7.8 |
| 2020-04-08 | CVE-2020-10366 | Path Traversal vulnerability in Logicaldoc LogicalDoc before 8.3.3 allows /servlet.gupld Directory Traversal, a different vulnerability than CVE-2020-9423 and CVE-2020-10365. | 7.5 |
| 2019-05-30 | CVE-2019-9723 | Path Traversal vulnerability in Logicaldoc 8.0/8.1/8.1.1 LogicalDOC Community Edition 8.x before 8.2.1 has a path traversal vulnerability that allows reading arbitrary files and the creation of directories, in the class PluginRegistry. | 7.1 |
| 2017-07-17 | CVE-2017-1000022 | Incorrect Permission Assignment for Critical Resource vulnerability in Logicaldoc LogicalDoc Community Edition 7.5.3 and prior contain an Incorrect access control which could leave to privilege escalation. | 8.8 |
| 2017-07-17 | CVE-2017-1000021 | XXE vulnerability in Logicaldoc LogicalDoc Community Edition 7.5.3 and prior is vulnerable to XXE when indexing XML documents. | 8.8 |