Lucene search
K

4 matches found

CVE
CVE
added 2014/11/21 3:0 p.m.49 views

CVE-2014-7871

The CVE-2014-7871 issue affects Open-Xchange App Suite (OX App Suite) via the jslob API, enabling SQL injection through MySQL XPath interpreter (ExtractValue). Vulnerable in 7.6.x before 7.6.0-rev23 and 7.4.2-rev36; fixed versions are 7.4.2-rev36 and 7.6.0-rev23. Impact involves potential arbitra...

6.5CVSS8AI score0.01649EPSS
Exploits3References4Affected Software1
0day.today
0day.today
added 2014/11/10 12:0 a.m.87 views

OX App Suite 7.6.0 SQL Injection Vulnerability

OX App Suite versions 7.6.0 and below suffer from a remote SQL injection vulnerability. Product: OX App Suite Vendor: Open-Xchange GmbH Internal reference: 34765 Bug ID Vulnerability type: SQL Injection CWE-89 Vulnerable version: 7.6.0 and earlier Vulnerable component: backend Report confidence:...

6.5CVSS7.6AI score0.01649EPSS
Exploits3
securityvulns
securityvulns
added 2014/11/10 12:0 a.m.59 views

Open-Xchange Security Advisory 2014-11-07

Product: OX App Suite Vendor: Open-Xchange GmbH Internal reference: 34765 Bug ID Vulnerability type: SQL Injection CWE-89 Vulnerable version: 7.6.0 and earlier Vulnerable component: backend Report confidence: Confirmed Solution status: Fixed by Vendor Researcher credits: SoftScheck GmbH Fixed...

6.5CVSS0.3AI score0.01649EPSS
Exploits3
Packet Storm
Packet Storm
added 2014/11/07 12:0 a.m.53 views

OX App Suite 7.6.0 SQL Injection

Product: OX App Suite Vendor: Open-Xchange GmbH Internal reference: 34765 Bug ID Vulnerability type: SQL Injection CWE-89 Vulnerable version: 7.6.0 and earlier Vulnerable component: backend Report confidence: Confirmed Solution status: Fixed by Vendor Researcher credits: SoftScheck GmbH Fixed...

6.5CVSS6.6AI score0.01649EPSS
Exploits3
Rows per page
Query Builder