Lucene search
K

1024 matches found

Nuclei
Nuclei
added 15 hours ago48 views

OX Appsuite - Cross-Site Scripting

OX App Suite through 7.10.4 allows XSS via the app loading mechanism the PATHINFO to the /appsuite URI. id: CVE-2020-24701 info: name: OX Appsuite - Cross-Site Scripting author: DhiyaneshDk severity: medium description: | OX App Suite through 7.10.4 allows XSS via the app loading mechanism the...

6.1CVSS6.4AI score0.06788EPSS
Exploits3References5
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.8 views

Open-Xchange OX Dovecot Pro 资源管理错误漏洞

Open-Xchange OX Dovecot Pro is an email storage and delivery system provided by the German company Open-Xchange. Open-Xchange OX Dovecot Pro has a resource management vulnerability, which stems from excessive use of curly braces in IMAP, leading to uncontrolled memory usage. This can result in...

4.3CVSS5.8AI score0.00454EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.7 views

Open-Xchange OX Dovecot Pro 安全漏洞

Open-Xchange OX Dovecot Pro is a mail storage and delivery system provided by the German company Open-Xchange. Open-Xchange OX Dovecot Pro has a security vulnerability. This vulnerability arises from the use of a security filter for variable expansion, where all subsequent pipes on the same strin...

9.1CVSS5.9AI score0.00406EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.10 views

Open-Xchange OX Dovecot Pro 安全漏洞

Open-Xchange OX Dovecot Pro is a mail storage and delivery system provided by the German company Open-Xchange. Open-Xchange OX Dovecot Pro has a security vulnerability. This vulnerability arises from the possibility for attackers to use specially crafted Base64-encoded exchanges to forge SCRAM TL...

6.8CVSS5.8AI score0.00222EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.6 views

Open-Xchange OX Dovecot Pro 访问控制错误漏洞

Open-Xchange OX Dovecot Pro is an email storage and delivery system provided by the German company Open-Xchange. Open-Xchange OX Dovecot Pro has a access control vulnerability. This vulnerability stems from the IMAP SETACL command, which allows the anyone permission to be injected into the user’s...

4.3CVSS5.8AI score0.00271EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.7 views

Open-Xchange OX Dovecot Pro 资源管理错误漏洞

Open-Xchange OX Dovecot Pro is an email storage and delivery system provided by the German company Open-Xchange. Open-Xchange OX Dovecot Pro has a resource management vulnerability. This vulnerability stems from allowing attackers to upload malicious Sieve scripts, bypassing the configured CPU ti...

6.5CVSS5.8AI score0.00338EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.10 views

Open-Xchange OX Dovecot Pro 安全漏洞

Open-Xchange OX Dovecot Pro is a mail storage and delivery system provided by the German company Open-Xchange. Open-Xchange OX Dovecot Pro has a security vulnerability. This vulnerability stems from the ManageSieve AUTHENTICATE command failing when literal values are used as SASL initial response...

7.5CVSS5.8AI score0.00703EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.7 views

Open-Xchange OX Dovecot Pro 安全漏洞

Open-Xchange OX Dovecot Pro is an email storage and delivery system provided by the German company Open-Xchange. Open-Xchange OX Dovecot Pro has a security vulnerability, which stems from the use of passwd files for each domain. This configuration allows for path traversal attacks, potentially...

5.3CVSS5.8AI score0.00427EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.12 views

Open-Xchange OX Dovecot Pro 安全漏洞

Open-Xchange OX Dovecot Pro is a mail storage and delivery system provided by the German company Open-Xchange. Open-Xchange OX Dovecot Pro has a security vulnerability, which stems from the insecure handling of zip-format attachments by the attachment-to-text script. This vulnerability may allow...

4.3CVSS5.8AI score0.00283EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.17 views

Open-Xchange OX Dovecot Pro 安全漏洞

Open-Xchange OX Dovecot Pro is a mail storage and delivery system provided by the German company Open-Xchange. OX Dovecot Pro has a security vulnerability; this vulnerability arises from email messages that contain excessive RFC 2231 MIME parameters, which may lead to excessive CPU usage and...

5.3CVSS5.8AI score0.00374EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.9 views

Open-Xchange OX Dovecot Pro 安全漏洞

Open-Xchange OX Dovecot Pro is a mail storage and delivery system provided by the German company Open-Xchange. Open-Xchange OX Dovecot Pro has a security vulnerability that stems from disconnecting from the authentication server when invalid base64 SASL data is sent. This vulnerability could lead...

7.5CVSS5.8AI score0.00447EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.11 views

Open-Xchange OX Dovecot Pro 安全漏洞

Open-Xchange OX Dovecot Pro is a mail storage and delivery system provided by the German company Open-Xchange. Open-Xchange OX Dovecot Pro has a security vulnerability. This vulnerability allows attackers to send specially crafted messages before authentication, thereby allocating a large amount ...

7.5CVSS5.8AI score0.0079EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.9 views

Open-Xchange OX Dovecot Pro 安全漏洞

Open-Xchange OX Dovecot Pro is a mail storage and delivery system provided by the German company Open-Xchange. Open-Xchange OX Dovecot Pro has a security vulnerability. This vulnerability arises from the possibility of injecting arbitrary LDAP filters when authusernamechars is empty, which may le...

5.3CVSS5.9AI score0.00286EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.11 views

Open-Xchange OX Dovecot Pro 安全漏洞

Open-Xchange OX Dovecot Pro is a mail storage and delivery system provided by the German company Open-Xchange. Open-Xchange OX Dovecot Pro has a security vulnerability that can be exploited under certain conditions, leading to a replay attack, which may allow attackers to log in as users...

6.8CVSS5.8AI score0.00338EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.9 views

Open-Xchange OX Dovecot Pro 安全漏洞

Open-Xchange OX Dovecot Pro is a mail storage and delivery system provided by the German company Open-Xchange. Open-Xchange OX Dovecot Pro has a security vulnerability; this vulnerability arises from the possibility of additional memory allocation when specific NOOP commands are sent, which could...

7.5CVSS5.8AI score0.00667EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:52 a.m.11 views

CVE-2013-6009

CRLF injection vulnerability in Open-Xchange AppSuite before 7.2.2, when using AJP in certain conditions, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the ajax/defer servlet...

4.3CVSS7.3AI score0.00958EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:44 a.m.7 views

CVE-2017-6912

Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Incorrect Access Control...

8.8CVSS7AI score0.01051EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/27 12:0 a.m.3 views

Open-Xchange OX App Suite 安全漏洞

Open-Xchange OX App Suite is a productivity application suite from Open-Xchange, a German company. A security vulnerability exists in Open-Xchange OX App Suite that originates from uploading a malicious file that can execute script code via an attacker-controlled link, potentially leading to the...

5.4CVSS6.9AI score0.00155EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/27 12:0 a.m.4 views

Open-Xchange OX App Suite 安全漏洞

Open-Xchange OX App Suite is a productivity application suite from Open-Xchange, a German company. A security vulnerability exists in Open-Xchange OX App Suite that originates from uploading a malicious file that can execute script code via an attacker-controlled link, potentially leading to the...

5.4CVSS6.9AI score0.00155EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/27 12:0 a.m.7 views

Open-Xchange OX App Suite 安全漏洞

Open-Xchange OX App Suite is a productivity application suite from Open-Xchange Germany. A security vulnerability exists in Open-Xchange OX App Suite that originates from malicious email content executable script code that could lead to the disclosure of sensitive information...

6.1CVSS6.6AI score0.00168EPSS
Exploits0References2
Rows per page
Query Builder