Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open-xchange appsuite vulnerabilities and exploits
(subscribe to this query)
356
VMScore
CVE-2017-15029
Open-Xchange GmbH OX App Suite 7.8.4 and previous versions is affected by: SSRF.
Open-xchange Open-xchange Appsuite
668
VMScore
CVE-2017-17060
OX Software GmbH OX App Suite 7.8.4 and previous versions is affected by: Insecure Permissions.
Open-xchange Open-xchange Appsuite
312
VMScore
CVE-2017-17061
OX Software GmbH OX App Suite 7.8.4 and previous versions is affected by: Cross Site Scripting (XSS).
Open-xchange Open-xchange Appsuite
383
VMScore
CVE-2017-9808
OX Software GmbH OX App Suite 7.8.4 and previous versions is affected by: Cross Site Scripting (XSS).
Open-xchange Open-xchange Appsuite
445
VMScore
CVE-2017-9809
OX Software GmbH OX App Suite 7.8.4 and previous versions is affected by: Information Exposure.
Open-xchange Open-xchange Appsuite
490
VMScore
CVE-2018-13103
OX App Suite 7.8.4 and previous versions allows SSRF.
Open-xchange Open-xchange Appsuite
312
VMScore
CVE-2018-13104
OX App Suite 7.8.4 and previous versions allows XSS. Internal reference: 58742 (Bug ID)
Open-xchange Open-xchange Appsuite
383
VMScore
CVE-2016-3174
An issue exists in Open-Xchange OX AppSuite prior to 7.8.0-rev27. The "defer" servlet offers to redirect a client to a specified URL. Since some checks were missing, arbitrary URLs could be provided as redirection target. Users can be tricked to follow a link to a trust...
Open-xchange Open-xchange Appsuite
383
VMScore
CVE-2016-6842
An issue exists in Open-Xchange OX App Suite prior to 7.8.2-rev8. Setting the user's name to JS code makes that code execute when selecting that user's "Templates" folder from OX Documents settings. This requires the folder to be shared to the victim. Maliciou...
Open-xchange Open-xchange Appsuite
383
VMScore
CVE-2016-6843
An issue exists in Open-Xchange OX App Suite prior to 7.8.2-rev8. Script code can be injected to contact names. When adding those contacts to a group, the script code gets executed in the context of the user which creates or changes the group by using autocomplete. In most cases ...
Open-xchange Open-xchange Appsuite
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »