Vulnerabilities > Onlyoffice > Document Server > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-15 | CVE-2020-11535 | XML Injection (aka Blind XPath Injection) vulnerability in Onlyoffice Document Server 5.5.0 An issue was discovered in ONLYOFFICE Document Server 5.5.0. | 9.8 |
| 2020-04-15 | CVE-2020-11536 | Improper Input Validation vulnerability in Onlyoffice Document Server 5.5.0 An issue was discovered in ONLYOFFICE Document Server 5.5.0. | 9.8 |
| 2020-04-15 | CVE-2020-11537 | SQL Injection vulnerability in Onlyoffice Document Server 5.5.0 A SQL Injection issue was discovered in ONLYOFFICE Document Server 5.5.0. | 9.8 |