3 matches found
CVE-2023-26450
The "OX Count" web service did not specify a media-type when processing responses by external resources. Malicious script code can be executed within the victims context. This can lead to session hijacking or triggering unwanted actions via the web interface and API. To exploit this an attacker...
CVE-2023-26450
creationtimestamp| type| source ---|---|--- 2023-08-02 16:39:15+00:00| seen| https://t.me/cibsecurity/67577...
CVE-2023-26450
Open-Xchange CVE-2023-26450 affects the OX Count web service in Open-Xchange AppSuite. The root cause is that the OX Count service did not specify a media-type when processing responses from external resources, enabling malicious script code to execute in the victim’s context and potentially lead...