Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open-xchange appsuite vulnerabilities and exploits
(subscribe to this query)
7.4
CVSSv3
CVE-2016-3174
An issue exists in Open-Xchange OX AppSuite prior to 7.8.0-rev27. The "defer" servlet offers to redirect a client to a specified URL. Since some checks were missing, arbitrary URLs could be provided as redirection target. Users can be tricked to follow a link to a trust...
Open-xchange Open-xchange Appsuite
5.4
CVSSv3
CVE-2020-12646
OX App Suite 7.10.3 and previous versions allows XSS via text/x-javascript, text/rdf, or a PDF document.
Open-xchange Open-xchange Appsuite
8.8
CVSSv3
CVE-2017-8340
Open-Xchange GmbH OX App Suite 7.8.3 and previous versions is affected by: Incorrect Access Control.
Open-xchange Open-xchange Appsuite
6.1
CVSSv3
CVE-2018-12611
OX App Suite 7.8.4 and previous versions allows Directory Traversal.
Open-xchange Open-xchange Appsuite
7.5
CVSSv3
CVE-2017-5211
Open-Xchange GmbH OX App Suite 7.8.3 and previous versions is affected by: Content Spoofing.
Open-xchange Open-xchange Appsuite
6.1
CVSSv3
CVE-2017-5213
Open-Xchange GmbH OX App Suite 7.8.3 and previous versions is affected by: Cross Site Scripting (XSS).
Open-xchange Open-xchange Appsuite
6.5
CVSSv3
CVE-2018-12609
OX App Suite 7.8.4 and previous versions allows Server-Side Request Forgery.
Open-xchange Open-xchange Appsuite
5.3
CVSSv3
CVE-2018-12610
OX App Suite 7.8.4 and previous versions allows Information Exposure.
Open-xchange Open-xchange Appsuite
5.4
CVSSv3
CVE-2017-17061
OX Software GmbH OX App Suite 7.8.4 and previous versions is affected by: Cross Site Scripting (XSS).
Open-xchange Open-xchange Appsuite
6.1
CVSSv3
CVE-2017-5864
Open-Xchange GmbH OX App Suite 7.8.3 and previous versions is affected by: Cross Site Scripting (XSS).
Open-xchange Open-xchange Appsuite
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
malicious code
camera
CVE-2023-46694
CVE-2023-43847
CVE-2023-30311
CVE-2024-27842
CVE-2024-30165
arbitrary code
CVE-2024-21683
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »