Open-xchange Appsuite@7.6.1 Security Vulnerabilities and Issues — Open-xchange Appsuite@7.6.1 CVE List

Lucene search

Open-xchangeOpen-xchange Appsuite7.6.1

3 matches found

CVE•added 2017/06/08 9:29 p.m.•46 views

CVE-2015-1588

Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange Server 6 and OX AppSuite before 7.4.2-rev43, 7.6.0-rev38, and 7.6.1-rev21.

6.1CVSS6.1AI score0.00292EPSS

CVE•added 2015/01/07 6:59 p.m.•37 views

CVE-2014-8993

Cross-site scripting (XSS) vulnerability in the backend in Open-Xchange (OX) AppSuite before 7.4.2-rev40, 7.6.0 before 7.6.0-rev32, and 7.6.1 before 7.6.1-rev11 allows remote attackers to inject arbitrary web script or HTML via a crafted XHTML file with the application/xhtml+xml MIME type.

4.3CVSS5.7AI score0.00256EPSS

CVE•added 2015/02/17 3:59 p.m.•37 views

CVE-2014-9466

Open-Xchange (OX) AppSuite and Server before 7.4.2-rev42, 7.6.0 before 7.6.0-rev36, and 7.6.1 before 7.6.1-rev14 does not properly handle directory permissions, which allows remote authenticated users to read files via unspecified vectors, related to the "folder identifier."

4CVSS6.3AI score0.00077EPSS