Open-xchange Appsuite@7.6.0 Security Vulnerabilities and Issues — Open-xchange Appsuite@7.6.0 CVE List

Lucene search

Open-xchangeOpen-xchange Appsuite7.6.0

3 matches found

CVE•added 2014/09/17 2:55 p.m.•39 views

CVE-2014-5235

Cross-site scripting (XSS) vulnerability in the frontend in Open-Xchange (OX) AppSuite before 7.4.2-rev33 and 7.6.x before 7.6.0-rev16 allows remote attackers to inject arbitrary web script or HTML via vectors related to unspecified fields in RSS feeds.

4.3CVSS5.7AI score0.00295EPSS

CVE•added 2014/11/21 3:59 p.m.•37 views

CVE-2014-7871

SQL injection vulnerability in Open-Xchange (OX) AppSuite before 7.4.2-rev36 and 7.6.x before 7.6.0-rev23 allows remote authenticated users to execute arbitrary SQL commands via a crafted jslob API call.

6.5CVSS8AI score0.00308EPSS

CVE•added 2014/09/17 2:55 p.m.•36 views

CVE-2014-5234

Cross-site scripting (XSS) vulnerability in the backend in Open-Xchange (OX) AppSuite before 7.4.2-rev33 and 7.6.x before 7.6.0-rev16 allows remote attackers to inject arbitrary web script or HTML via a folder publication name.

4.3CVSS5.7AI score0.00295EPSS