Mastodon Cross-Site Scripting Vulnerability

Mastodon is an open source social network server based on ActivityPub. A cross-site scripting vulnerability exists in Mastodon versions prior to 3.5.14, prior to 4.0.10, prior to 4.1.8, and prior to 4.2.0-rc2, which stems from the fact that under certain circumstances, an attacker can abuse the...

Open-Xchange OX App Suite 跨站脚本漏洞

Open-Xchange OX App Suite is an email and productivity suite client software from Open-Xchange, a German company. A cross-site scripting vulnerability exists in Open-Xchange OX App Suite versions 7.10.6 and below, which stems from the ability to bypass existing HTML file cleanup and filtering...