Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open-xchange appsuite vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2021-23930
OX App Suite up to and including 7.10.4 allows XSS via use of the conversion API for a distributedFile.
Open-xchange Open-xchange Appsuite
6.1
CVSSv3
CVE-2021-23932
OX App Suite up to and including 7.10.4 allows XSS via an inline image with a crafted filename.
Open-xchange Open-xchange Appsuite
9.8
CVSSv3
CVE-2017-17060
OX Software GmbH OX App Suite 7.8.4 and previous versions is affected by: Insecure Permissions.
Open-xchange Open-xchange Appsuite
5.4
CVSSv3
CVE-2017-17061
OX Software GmbH OX App Suite 7.8.4 and previous versions is affected by: Cross Site Scripting (XSS).
Open-xchange Open-xchange Appsuite
6.1
CVSSv3
CVE-2016-6843
An issue exists in Open-Xchange OX App Suite prior to 7.8.2-rev8. Script code can be injected to contact names. When adding those contacts to a group, the script code gets executed in the context of the user which creates or changes the group by using autocomplete. In most cases ...
Open-xchange Open-xchange Appsuite
6.1
CVSSv3
CVE-2016-6845
An issue exists in Open-Xchange OX App Suite prior to 7.8.2-rev8. Script code within hyperlinks at HTML E-Mails is not getting correctly sanitized when using base64 encoded "data" resources. This allows an malicious user to provide hyperlinks that may execute script cod...
Open-xchange Open-xchange Appsuite
4.3
CVSSv3
CVE-2016-6852
An issue exists in Open-Xchange OX App Suite prior to 7.8.2-rev8. Users can provide local file paths to the RSS reader; the response and error code give hints about whether the provided file exists or not. Attackers may discover specific system files or library versions on the mi...
Open-xchange Open-xchange Appsuite
5.3
CVSSv3
CVE-2018-12610
OX App Suite 7.8.4 and previous versions allows Information Exposure.
Open-xchange Open-xchange Appsuite
6.1
CVSSv3
CVE-2018-12611
OX App Suite 7.8.4 and previous versions allows Directory Traversal.
Open-xchange Open-xchange Appsuite
3.3
CVSSv3
CVE-2019-11806
OX App Suite 7.10.1 and previous versions has Insecure Permissions.
Open-xchange Open-xchange Appsuite
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »