4 matches found
CVE-2022-37308
OX App Suite through 7.10.6 allows XSS via HTML in text/plain e-mail messages...
CVE-2022-37308
OX App Suite through 7.10.6 allows XSS via HTML in text/plain e-mail messages...
CVE-2022-37308
OX App Suite (Open-Xchange) is affected up to version 7.10.6 with a cross-site scripting (XSS) issue triggered by HTML in text/plain email messages. The root cause involves HTML content in plain-text emails being processed in the client, enabling script execution. Remediation available in fixed b...
OX App Suite 7.10.6 Cross Site Scripting / SSRF / Resource Consumption
Product: OX App Suite Vendor: OX Software GmbH Internal reference: OXUIB-1654 Vulnerability type: Cross-Site Scripting CWE-80 Vulnerable version: 7.10.6 and earlier Vulnerable component: frontend Report confidence: Confirmed Solution status: Fixed by Vendor Fixed version: 7.10.5-rev37, 7.10.6-rev...