Open-xchange Appsuite Security Vulnerabilities and Issues — Open-xchange Appsuite CVE List

Lucene search

Open-xchangeOpen-xchange Appsuite

2 matches found

CVE•added 2015/01/05 8:59 p.m.•42 views

CVE-2014-1679

Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite before 7.2.2-rev31, 7.4.0 before 7.4.0-rev27, and 7.4.1 before 7.4.1-rev17 allows remote attackers to inject arbitrary web script or HTML via the header in an attached SVG file.

4.3CVSS5.8AI score0.00285EPSS

CVE•added 2015/01/07 6:59 p.m.•37 views

CVE-2014-8993

Cross-site scripting (XSS) vulnerability in the backend in Open-Xchange (OX) AppSuite before 7.4.2-rev40, 7.6.0 before 7.6.0-rev32, and 7.6.1 before 7.6.1-rev11 allows remote attackers to inject arbitrary web script or HTML via a crafted XHTML file with the application/xhtml+xml MIME type.

4.3CVSS5.7AI score0.00256EPSS