CRLF injection vulnerability in the redirect servlet in Open-Xchange AppSuite and Server prior to 6.22.0 rev15, 6.22.1 before rev17, 7.0.1 before rev6, and 7.0.2 before rev7 allows remote malicious users to inject arbitrary HTTP headers and conduct open redirect attacks by leveraging improper sanitization of whitespace characters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
open-xchange open-xchange appsuite 6.22.0 |
||
open-xchange open-xchange appsuite 6.22.1 |
||
open-xchange open-xchange appsuite 7.0.1 |
||
open-xchange open-xchange appsuite 7.0.2 |
||
open-xchange open-xchange server 6.22.1 |
||
open-xchange open-xchange server 7.0.1 |
||
open-xchange open-xchange server 6.22.0 |
||
open-xchange open-xchange server 7.0.2 |