263 matches found
EUVD-2014-2427
Malware in sbrugna...
EUVD-2013-5903
Malware in sbrugna...
EUVD-2013-6069
Malware in sbrugna...
EUVD-2013-5770
Malware in sbrugna...
EUVD-2013-7244
Malware in sbrugna...
EUVD-2013-5839
Malware in sbrugna...
@open-xchange/appsuite-codeceptjs (>=0.2.0 <=0.6.2), c-configure (>=1.0.1 <=2.1.5) +3 more potentially affected by CVE-2025-57285 via codeceptjs (>=3.0.7 <=3.6.7)
codeceptjs NPM version =3.0.7, =0.2.0, =1.0.1, =7.0.23, =1.0.4, =1.0.0, =1.0.4 Source cves: CVE-2025-57285 Source advisory: SNYK:JS-CODECEPTJS-12670804...
TamperedChef Malware Disguised as Fake PDF Editors Steals Credentials and Cookies
Cybersecurity researchers have discovered a cybercrime campaign that's using malvertising tricks to direct victims to fraudulent sites to deliver a new information stealer called TamperedChef. "The objective is to lure victims into downloading and installing a trojanized PDF editor, which include...
MAL-2025-28316 Malicious code in open-xchange-appsuite-help (npm)
The package open-xchange-appsuite-help was found to contain malicious code...
Malicious code in open-xchange-appsuite-help (npm)
The package open-xchange-appsuite-help was found to contain malicious code...
CVE-2013-5934
Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 has a hardcoded password for node join operations, which allows remote attackers to expand a cluster by finding this password in the source code and then sending the password in a Hazelcast cluster API call, a different...
CVE-2013-5936
The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 allows remote attackers to obtain sensitive information about 1 runtime activity, 2 network configuration, 3 user sessions, 4 the memcache interface, and 5 the REST interface via API calls suc...
CVE-2013-5698
Cross-site scripting XSS vulnerability in Open-Xchange AppSuite and Server before 6.22.0 rev16, 6.22.1 before rev19, 7.0.1 before rev7, 7.0.2 before rev11, and 7.2.0 before rev8 allows remote authenticated users to inject arbitrary web script or HTML via a delivery=view action, aka Bug ID 26373, ...
CVE-2013-2583
Multiple cross-site scripting XSS vulnerabilities in Open-Xchange AppSuite and Server before 6.20.7 rev16, 6.22.0 before rev15, 6.22.1 before rev17, 7.0.1 before rev6, and 7.0.2 before rev7 allow remote attackers to inject arbitrary web script or HTML via 1 a javascript: URL, 2 malformed nested...
CVE-2013-4790
Open-Xchange AppSuite before 7.0.2 rev14, 7.2.0 before rev11, 7.2.1 before rev10, and 7.2.2 before rev9 relies on user-supplied data to predict the IMAP server hostname for an external domain name, which allows remote authenticated users to discover e-mail credentials of other users in...
CVE-2013-5200
The 1 REST and 2 memcache interfaces in the Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 do not require authentication, which allows remote attackers to obtain sensitive information or modify data via an API call...
CVE-2013-5690
Multiple cross-site scripting XSS vulnerabilities in Open-Xchange AppSuite before 7.2.2 allow remote authenticated users to inject arbitrary web script or HTML via 1 content with the text/xml MIME type or 2 the Status comment field of an appointment...
Open-Xchange AppSuite Path Traversal Vulnerability
Open-Xchange AppSuite is a set of Web cloud desktop environments from Open-Xchange Germany. The environment allows users to more intuitively manage email, tasks, files, and more. A path traversal vulnerability exists in Open-Xchange AppSuite that originates from allowing an attacker with access...
Open-Xchange AppSuite SQL Injection Vulnerability
Open-Xchange AppSuite is a set of Web cloud desktop environments from Open-Xchange Germany. The environment allows users to manage email, tasks, files, etc. more intuitively. A security vulnerability exists in Open-Xchange AppSuite that stems from a SQL injection vulnerability in the Cacheservice...
Open-Xchange AppSuite Command Injection Vulnerability
Open-Xchange AppSuite is a set of Web cloud desktop environments from Open-Xchange Germany. The environment allows users to manage email, tasks, files, etc. more intuitively. A command injection vulnerability exists in Open-Xchange AppSuite that originates from allowing an attacker to inject...