18 matches found
CVE-2021-33495
OX App Suite 7.10.5 allows XSS via an OX Chat system message...
CVE-2021-33492
OX App Suite 7.10.5 allows XSS via an OX Chat room name...
EUVD-2021-20198
Malware in sbrugna...
EUVD-2021-20197
Malware in sbrugna...
CVE-2023-26449
The "OX Chat" web service did not specify a media-type when processing responses by external resources. Malicious script code can be executed within the victims context. This can lead to session hijacking or triggering unwanted actions via the web interface and API. To exploit this an attacker...
CVE-2023-26449
The "OX Chat" web service did not specify a media-type when processing responses by external resources. Malicious script code can be executed within the victims context. This can lead to session hijacking or triggering unwanted actions via the web interface and API. To exploit this an attacker...
CVE-2023-26449
CVE-2023-26449 affects Open-Xchange AppSuite’s OX Chat web service, where not specifying a media-type when handling responses from external resources enables potential cross-site script execution within the victim’s context. This could lead to session hijacking or unauthorized actions via the web...
CVE-2023-26449
The "OX Chat" web service did not specify a media-type when processing responses by external resources. Malicious script code can be executed within the victims context. This can lead to session hijacking or triggering unwanted actions via the web interface and API. To exploit this an attacker...
Open-Xchange AppSuite Cross-Site Scripting Vulnerability
Open-Xchange AppSuite is a set of Web cloud desktop environments from Open-Xchange Germany. The environment allows users to more intuitively manage email, tasks, files, and more. A security vulnerability exists in Open-Xchange AppSuite that stems from the OX Chat web service not specifying a medi...
PT-2023-20641 · Ox Chat · Ox Chat
Name of the Vulnerable Software and Affected Versions: OX Chat affected versions not specified Description: The issue arises from the "OX Chat" web service not specifying a media-type when processing responses from external resources, allowing malicious script code to be executed within the...
Open-xchange OX App Suite Cross-Site Scripting Vulnerability (CNVD-2021-90760)
Open-xchange OX App Suite is a web-based cloud desktop environment from Open-Xchange Open-xchange, a US-based company. The environment allows users to more intuitively manage email, tasks, files, etc. A cross-site scripting vulnerability exists in Open-xchange OX App Suite, which can be exploited...
Open-xchange OX App Suite Cross-Site Scripting Vulnerability (CNVD-2021-90759)
Open-xchange OX App Suite is a web-based cloud desktop environment from Open-Xchange Open-xchange, a US-based company. The environment allows users to more intuitively manage email, tasks, files, etc. A cross-site scripting vulnerability exists in Open-xchange OX App Suite, which can be exploited...
CVE-2021-33495
OX App Suite 7.10.5 allows XSS via an OX Chat system message...
Cross site scripting
OX App Suite 7.10.5 allows XSS via an OX Chat system message...
CVE-2021-33495
OX App Suite 7.10.5 allows XSS via an OX Chat system message...
CVE-2021-33492
OX App Suite 7.10.5 allows XSS via an OX Chat room name...
Open-xchange OX App Suite 跨站脚本漏洞
Open-xchange OX App Suite is a web-based cloud desktop environment from Open-Xchange Open-xchange, a US-based company. The environment allows users to more intuitively manage email, tasks, files, etc. A cross-site scripting vulnerability exists in Open-xchange OX App Suite, which can be exploited...
Open-xchange OX App Suite 跨站脚本漏洞
Open-xchange OX App Suite is a web-based cloud desktop environment from Open-Xchange Open-xchange, a US-based company. The environment allows users to more intuitively manage email, tasks, files, etc. A cross-site scripting vulnerability exists in Open-xchange OX App Suite, which can be exploited...