3 matches found
CVE-2023-26445
Frontend themes are defined by user-controllable jslob settings and could point to a malicious resource which gets processed during login. Malicious script code can be executed within the victims context. This can lead to session hijacking or triggering unwanted actions via the web interface and...
CVE-2023-26445
creationtimestamp| type| source ---|---|--- 2023-08-02 16:39:21+00:00| seen| https://t.me/cibsecurity/67580...
CVE-2023-26445
Open-Xchange AppSuite is affected by a frontend/theme handling vulnerability where user-controllable jslob theme settings can reference a malicious resource processed during login. This can allow execution of malicious script in the victim’s browser context, potentially enabling session hijacking...