OX App Suite up to and including 7.10.4 allows XSS via JavaScript in a Note referenced by a mail:// URL.
open-xchange open-xchange appsuite