CVE-2015-7385
Open-Xchange OX Guard up to version 2.0.0-rev11 is affected by a Cross-site scripting (XSS) flaw in the Guard PGP Settings. The uid field in a PGP public key can carry arbitrary user-id content that may be rendered in the affected UI, enabling remote attackers to inject JavaScript/HTML. Public ke...