Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open-xchange appsuite vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2016-5740
An issue exists in Open-Xchange OX App Suite prior to 7.8.2-rev5. JavaScript code can be used as part of ical attachments within scheduling E-Mails. This content, for example an appointment's location, will be presented to the user at the E-Mail App, depending on the invitat...
Open-xchange Open-xchange Appsuite
1 EDB exploit
356
VMScore
CVE-2017-15029
Open-Xchange GmbH OX App Suite 7.8.4 and previous versions is affected by: SSRF.
Open-xchange Open-xchange Appsuite
383
VMScore
CVE-2017-15030
Open-Xchange GmbH OX App Suite 7.8.4 and previous versions is affected by: Cross Site Scripting (XSS).
Open-xchange Open-xchange Appsuite
312
VMScore
CVE-2016-4027
An issue exists in Open-Xchange OX App Suite prior to 7.8.1-rev10. App Suite frontend offers to control whether a user wants to store cookies that exceed the session duration. This functionality is useful when logging in from clients with reduced privileges or shared environments...
Open-xchange Open-xchange Appsuite
383
VMScore
CVE-2016-4045
An issue exists in Open-Xchange OX App Suite prior to 7.8.1-rev11. Script code can be embedded to RSS feeds using a URL notation. In case a user clicks the corresponding link at the RSS reader of App Suite, code gets executed at the context of the user. Malicious script code can ...
Open-xchange Open-xchange Appsuite
445
VMScore
CVE-2016-4046
An issue exists in Open-Xchange OX App Suite prior to 7.8.1-rev11. The API to configure external mail accounts can be abused to map and access network components within the trust boundary of the operator. Users can inject arbitrary hosts and ports to API calls. Depending on the r...
Open-xchange Open-xchange Appsuite
356
VMScore
CVE-2016-4047
An issue exists in Open-Xchange OX App Suite prior to 7.8.1-rev8. References to external Open XML document type definitions (.dtd resources) can be placed within .docx and .xslx files. Those resources were requested when parsing certain parts of the generated document. As a resul...
Open-xchange Open-xchange Appsuite
383
VMScore
CVE-2016-6852
An issue exists in Open-Xchange OX App Suite prior to 7.8.2-rev8. Users can provide local file paths to the RSS reader; the response and error code give hints about whether the provided file exists or not. Attackers may discover specific system files or library versions on the mi...
Open-xchange Open-xchange Appsuite
383
VMScore
CVE-2018-12611
OX App Suite 7.8.4 and previous versions allows Directory Traversal.
Open-xchange Open-xchange Appsuite
668
VMScore
CVE-2019-7158
OX App Suite 7.10.0 and previous versions has Incorrect Access Control.
Open-xchange Open-xchange Appsuite
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »