Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2016-5740
HistoryDec 15, 2016 - 6:59 a.m.

Open redirect

2016-12-1506:59:00
PRIOn knowledge base
www.prio-n.com
3

7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

59.2%

JSON

An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev5. JavaScript code can be used as part of ical attachments within scheduling E-Mails. This content, for example an appointment’s location, will be presented to the user at the E-Mail App, depending on the invitation workflow. This code gets executed within the context of the user’s current session. Malicious script code can be executed within a user’s context. This can lead to session hijacking or triggering unwanted actions via the web interface (sending mail, deleting data etc.).

CPENameOperatorVersion
open-xchange_appsuitele7.8.2

Related

zdt 1
packetstorm 1
nvd 1
openvas 1
exploitpack 1
cvelist 1
cve 1
exploitdb 1
zdt
zdt
Open-Xchange App Suite 7.8.2 - Cross Site Scripting
2016-09-13 00:00:00
packetstorm
packetstorm
Open-Xchange App Suite 7.8.2 Cross Site Scripting
2016-09-13 00:00:00
nvd
nvd
CVE-2016-5740
2016-12-15 06:59:14
openvas
openvas
Open-Xchange (OX) App Suite Multiple XSS Vulnerabilities
2017-01-02 00:00:00
exploitpack
exploitpack
Open-Xchange App Suite 7.8.2 - Cross-Site Scripting
2016-09-13 00:00:00
cvelist
cvelist
CVE-2016-5740
2016-12-15 06:31:00
cve
cve
CVE-2016-5740
2016-12-15 06:59:14
exploitdb
exploitdb
Open-Xchange App Suite 7.8.2 - Cross-Site Scripting
2016-09-13 00:00:00

7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

59.2%

JSON
Related for PRION:CVE-2016-5740
zdt1packetstorm1nvd1openvas1exploitpack1cvelist1cve1exploitdb1