2 matches found
CVE-2013-6997
Open-Xchange AppSuite 7.4.0 and earlier are affected by two XSS vulnerabilities. The issue arises from embedding CSS in HTML emails (wildcards in CSS) and from crafted hyperlinks with script URL handlers in office documents, allowing remote attackers to inject malicious script in the user’s brows...
Open-Xchange Security Advisory 2014-01-06
Open-Xchange Security Advisory 2014-01-06 Product: Open-Xchange AppSuite Vendor: Open-Xchange GmbH Internal reference: 30203 Bug ID Vulnerability type: CWE-80 Improper Neutralization of Script-Related HTML Tags in a Web Page Vulnerable version: 7.4.0 and earlier Vulnerable component: backend Fixe...