VYPR
Unrated severityNVD Advisory· Published Jan 2, 2020· Updated Aug 6, 2024

CVE-2013-7485

CVE-2013-7485

Description

Cross-site scripting (XSS) vulnerability in the backend in Open-Xchange (OX) AppSuite 7.2.x before 7.2.2-rev26 and 7.4.x before 7.4.0-rev16 allows remote attackers to inject arbitrary web script or HTML via the publication name, which is not properly handled in an error message. NOTE: this vulnerability was SPLIT from CVE-2013-6242 because it affects different sets of versions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Open-Xchange (OX)/AppSuitedescription
  • Range: <7.2.2-rev26, <7.4.0-rev16

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.