Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
martin heiland vulnerabilities and exploits
(subscribe to this query)
356
VMScore
CVE-2020-12643
OX App Suite 7.10.3 and previous versions has Incorrect Access Control via an /api/subscriptions request for a snippet containing an email address.
Open-xchange Open-xchange Appsuite
356
VMScore
CVE-2020-12644
OX App Suite 7.10.3 and previous versions allows SSRF, related to the mail account API and the /folder/list API.
Open-xchange Open-xchange Appsuite
NA
CVE-2022-37311
OX App Suite up to and including 7.10.6 has Uncontrolled Resource Consumption via a large location request parameter to the redirect servlet.
Open-xchange Open-xchange Appsuite
Open-xchange Open-xchange Appsuite 7.10.5
Open-xchange Open-xchange Appsuite 7.10.6
383
VMScore
CVE-2021-33489
OX App Suite up to and including 7.10.5 allows XSS via JavaScript code in a shared XCF file.
Open-xchange Ox App Suite
516
VMScore
CVE-2021-33488
chat in OX App Suite 7.10.5 has Improper Input Validation. A user can be redirected to a rogue OX Chat server via a development-related hook.
Open-xchange Ox App Suite
356
VMScore
CVE-2021-33491
OX App Suite up to and including 7.10.5 allows Directory Traversal via ../ in an OOXML or ODF ZIP archive, because of the mishandling of relative paths in mail addresses in conjunction with auto-configuration DNS records.
Open-xchange Ox App Suite
383
VMScore
CVE-2021-33492
OX App Suite 7.10.5 allows XSS via an OX Chat room name.
Open-xchange Ox App Suite 7.10.5
320
VMScore
CVE-2021-33493
The middleware component in OX App Suite up to and including 7.10.5 allows Code Injection via Java classes in a YAML format.
Open-xchange Ox App Suite
383
VMScore
CVE-2021-33494
OX App Suite 7.10.5 allows XSS via an OX Chat room title during typing rendering.
Open-xchange Ox App Suite 7.10.5
383
VMScore
CVE-2021-33495
OX App Suite 7.10.5 allows XSS via an OX Chat system message.
Open-xchange Ox App Suite 7.10.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »