2 matches found
CVE-2023-26429
Control characters were not removed when exporting user feedback content. This allowed attackers to include unexpected content via user feedback and potentially break the exported data structure. We now drop all control characters that are not whitespace character during the export. No publicly...
CVE-2023-26429
Summary: CVE-2023-26429 affects Open-Xchange Open-Xchange App Suite (OX App Suite) backend when exporting user feedback content. The root cause is that control characters were not removed from the exported content, allowing attackers to insert unexpected content and potentially break the exported...