MAL-2025-12076 Malicious code in @zalastax/nolb-jsob (npm)

The package @zalastax/nolb-jsob was found to contain malicious code...

Malicious code in @zalastax/nolb-jsob (npm)

The package @zalastax/nolb-jsob was found to contain malicious code...

PT-2023-19703 · Open Xchange · Ox App Suite

Name of the Vulnerable Software and Affected Versions: OX App Suite versions prior to 7.10.6-rev24 Description: The issue allows for XSS via a non-app deeplink, such as the jslob API's registry sub-tree. Recommendations: For versions prior to 7.10.6-rev24, update to version 7.10.6-rev24 or later ...

PT-2023-14289 · Open Xchange · Ox App Suite

Name of the Vulnerable Software and Affected Versions: OX App Suite versions prior to 7.10.6-rev30 Description: The issue allows for cross-site scripting XSS via an activity tracking adapter defined by jslob. This can potentially lead to malicious script execution on the client-side...