Lucene search
+L

263 matches found

Cvelist
Cvelist
added 2020/01/02 6:5 p.m.34 views

CVE-2013-7486

Cross-site scripting XSS vulnerability in the backend in Open-Xchange OX AppSuite 7.2.x before 7.2.2-rev27 and 7.4.x before 7.4.0-rev20 allows remote attackers to inject arbitrary web script or HTML via the body of an email. NOTE: this vulnerability was SPLIT from CVE-2013-6242 because it affects...

6AI score0.01626EPSS
Exploits0References5
Cvelist
Cvelist
added 2020/01/02 6:5 p.m.26 views

CVE-2013-7485

Cross-site scripting XSS vulnerability in the backend in Open-Xchange OX AppSuite 7.2.x before 7.2.2-rev26 and 7.4.x before 7.4.0-rev16 allows remote attackers to inject arbitrary web script or HTML via the publication name, which is not properly handled in an error message. NOTE: this...

6AI score0.01765EPSS
Exploits0References8
CVE
CVE
added 2020/01/02 6:5 p.m.81 views

CVE-2013-7485

CVE-2013-7485 is an XSS in the backend of Open-Xchange AppSuite. Affected: 7.2.x prior to 7.2.2-rev26 and 7.4.x prior to 7.4.0-rev16. Vulnerability arises from improper handling of the publication name in error messages, enabling remote attackers to inject arbitrary script/HTML. Mitigation: apply...

6.1CVSS6AI score0.01765EPSS
Exploits0References8Affected Software1
Symantec
Symantec
added 2020/01/02 12:0 a.m.40 views

Open-Xchange AppSuite Multiple Security Vulnerabilities

Description Open-Xchange AppSuite is prone to multiple security vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected application. This may let the attacker steal cookie-based authentication...

7.3AI score
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2019/06/19 12:0 a.m.34 views

Open-Xchange (OX) AppSuite Improper Access Control Vulnerability (Bug ID 61315)

Open-Xchange OX AppSuite is prone to an improper access control vulnerability. This VT has been deprecated and replaced by the VT SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

9.8CVSS9.7AI score0.01523EPSS
Exploits1
OpenVAS
OpenVAS
added 2019/06/19 12:0 a.m.31 views

Open-Xchange (OX) AppSuite Information Exposure Vulnerability (Bug ID 61771)

Open-Xchange OX AppSuite is prone to an information exposure vulnerability. This VT has been deprecated and replaced by the VT SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.5CVSS7.5AI score0.01562EPSS
Exploits1
CNVD
CNVD
added 2019/04/09 12:0 a.m.4 views

Open-Xchange AppSuite Information Disclosure Vulnerability (CNVD-2019-12910)

Open-Xchange AppSuite is a suite of Web-based cloud desktop environments from Open-Xchange USA. The environment allows users to manage email, tasks, files, etc. more intuitively. An information disclosure vulnerability exists in Open-Xchange AppSuite 7.10.1 and prior versions, which arises from...

7.5CVSS6.1AI score0.01562EPSS
Exploits1References1
CNVD
CNVD
added 2019/04/09 12:0 a.m.5 views

Open-Xchange AppSuite Access Control Error Vulnerability

Open-Xchange AppSuite is a suite of Web-based cloud desktop environments from Open-Xchange USA. The environment allows users to manage email, tasks, files, etc. more intuitively. An Access Control Error vulnerability exists in Open-Xchange AppSuite 7.10.1 and prior versions, which arises from a...

9.8CVSS6.7AI score0.01523EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2018/04/10 3:29 p.m.5 views

CVE-2014-2078

The backend in Open-Xchange OX AppSuite 7.4.2 before 7.4.2-rev9 allows remote attackers to obtain sensitive information about user email addresses in opportunistic circumstances by leveraging a failure in e-mail auto configuration for external accounts...

5.3CVSS5.5AI score0.01324EPSS
Exploits0References3
NVD
NVD
added 2018/04/10 3:29 p.m.23 views

CVE-2014-2078

The backend in Open-Xchange OX AppSuite 7.4.2 before 7.4.2-rev9 allows remote attackers to obtain sensitive information about user email addresses in opportunistic circumstances by leveraging a failure in e-mail auto configuration for external accounts...

5.3CVSS5.1AI score0.01324EPSS
Exploits0References2
Prion
Prion
added 2018/04/10 3:29 p.m.20 views

Open redirect

The backend in Open-Xchange OX AppSuite 7.4.2 before 7.4.2-rev9 allows remote attackers to obtain sensitive information about user email addresses in opportunistic circumstances by leveraging a failure in e-mail auto configuration for external accounts...

5CVSS6.6AI score0.01324EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/04/10 3:0 p.m.25 views

CVE-2014-2078

The backend in Open-Xchange OX AppSuite 7.4.2 before 7.4.2-rev9 allows remote attackers to obtain sensitive information about user email addresses in opportunistic circumstances by leveraging a failure in e-mail auto configuration for external accounts...

5.1AI score0.01324EPSS
Exploits0References2
CVE
CVE
added 2018/04/10 3:0 p.m.48 views

CVE-2014-2078

Open-Xchange AppSuite 7.4.2 is affected by CVE-2014-2078. The vulnerability arises when E-Mail auto configuration for external accounts fails, enabling remote attackers to obtain email addresses of other users under opportunistic circumstances. Affected component is the backend in AppSuite; explo...

5.3CVSS5AI score0.01324EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2017/06/08 9:29 p.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Open-Xchange Server 6 and OX AppSuite before 7.4.2-rev43, 7.6.0-rev38, and 7.6.1-rev21...

4.3CVSS6.2AI score0.01538EPSS
Exploits0References4Affected Software2
NVD
NVD
added 2017/06/08 9:29 p.m.15 views

CVE-2015-1588

Multiple cross-site scripting XSS vulnerabilities in Open-Xchange Server 6 and OX AppSuite before 7.4.2-rev43, 7.6.0-rev38, and 7.6.1-rev21...

6.1CVSS6.2AI score0.01538EPSS
Exploits0References4
Cvelist
Cvelist
added 2017/06/08 9:0 p.m.24 views

CVE-2015-1588

Multiple cross-site scripting XSS vulnerabilities in Open-Xchange Server 6 and OX AppSuite before 7.4.2-rev43, 7.6.0-rev38, and 7.6.1-rev21...

6.2AI score0.01538EPSS
Exploits0References4
CVE
CVE
added 2017/06/08 9:0 p.m.62 views

CVE-2015-1588

CVE-2015-1588 affects Open-Xchange Server 6 and OX AppSuite. The issue is multiple cross-site scripting (XSS) vulnerabilities caused by insufficient input filtering in the backend/OX AppSuite, enabling execution of crafted script in a user’s browser context and potential session-related issues. A...

6.1CVSS6.1AI score0.01538EPSS
Exploits0References4Affected Software2
OSV
OSV
added 2017/03/29 2:59 p.m.4 views

CVE-2016-6846

Cross-site scripting XSS vulnerability in Open-Xchange OX AppSuite backend before 7.6.2-rev59, 7.8.0 before 7.8.0-rev38, 7.8.2 before 7.8.2-rev8; AppSuite frontend before 7.6.2-rev47, 7.8.0 before 7.8.0-rev30, and 7.8.2 before 7.8.2-rev8; Office Web before 7.6.2-rev16, 7.8.0 before 7.8.0-rev10, a...

6.1CVSS5.9AI score0.01159EPSS
Exploits0References4
NVD
NVD
added 2017/03/29 2:59 p.m.16 views

CVE-2016-6846

Cross-site scripting XSS vulnerability in Open-Xchange OX AppSuite backend before 7.6.2-rev59, 7.8.0 before 7.8.0-rev38, 7.8.2 before 7.8.2-rev8; AppSuite frontend before 7.6.2-rev47, 7.8.0 before 7.8.0-rev30, and 7.8.2 before 7.8.2-rev8; Office Web before 7.6.2-rev16, 7.8.0 before 7.8.0-rev10, a...

6.1CVSS6.1AI score0.01159EPSS
Exploits0References4
Prion
Prion
added 2017/03/29 2:59 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in Open-Xchange OX AppSuite backend before 7.6.2-rev59, 7.8.0 before 7.8.0-rev38, 7.8.2 before 7.8.2-rev8; AppSuite frontend before 7.6.2-rev47, 7.8.0 before 7.8.0-rev30, and 7.8.2 before 7.8.2-rev8; Office Web before 7.6.2-rev16, 7.8.0 before 7.8.0-rev10, a...

4.3CVSS6.3AI score0.01159EPSS
Exploits0References4Affected Software4
Rows per page
Query Builder