The host is installed with LibreOffice before 6.2.6 and is prone to an insufficient URL encoding attack vulnerability. A flaw is present in the application, which fails to properly handle an issue in allowed location script check. Successful exploitation could allow attackers to execute scripts in arbitrary locations on the file system.