Ox Appsuite

CVEs (177)

• CVE-2017-5864May 22, 2019
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Cross Site Scripting (XSS).

• CVE-2017-6912May 22, 2019
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Incorrect Access Control.

• CVE-2017-8340May 22, 2019
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Incorrect Access Control.

• CVE-2017-8341May 22, 2019
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Content Spoofing.

• CVE-2017-9809May 22, 2019
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: Information Exposure.

• CVE-2017-12884May 10, 2019
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  OX Software GmbH App Suite 7.8.4 and earlier is affected by: Information Exposure.

• CVE-2017-12885May 10, 2019
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  OX Software GmbH App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS).

• CVE-2018-13104Mar 17, 2019
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  OX App Suite 7.8.4 and earlier allows XSS. Internal reference: 58742 (Bug ID)

• CVE-2018-13103Mar 17, 2019
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  OX App Suite 7.8.4 and earlier allows SSRF.

• CVE-2018-12611Jan 29, 2019
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  OX App Suite 7.8.4 and earlier allows Directory Traversal.

• CVE-2018-12609Jan 29, 2019
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  OX App Suite 7.8.4 and earlier allows Server-Side Request Forgery.

• CVE-2018-12610Jan 29, 2019
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  OX App Suite 7.8.4 and earlier allows Information Exposure.

• CVE-2018-9998Jul 5, 2018
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  Open-Xchange OX App Suite before 7.6.3-rev37, 7.8.x before 7.8.2-rev40, 7.8.3 before 7.8.3-rev48, and 7.8.4 before 7.8.4-rev28 include folder names in API error responses, which allows remote attackers to obtain sensitive information via the folder parameter in an "all" action…

• CVE-2018-9997Jul 5, 2018
  Open-Xchange

  Ox Appsuite
  risk 0.00cvss —epss 0.00

  Cross-site scripting (XSS) vulnerability in mail compose in Open-Xchange OX App Suite before 7.6.3-rev31, 7.8.x before 7.8.2-rev31, 7.8.3 before 7.8.3-rev41, and 7.8.4 before 7.8.4-rev28 allows remote attackers to inject arbitrary web script or HTML via the data-target attribute…

• CVE-2015-5375Sep 28, 2015
  Open-Xchange

  Open Xchange Server
  risk 0.00cvss —epss 0.00

  Cross-site scripting (XSS) vulnerability in unspecified dialogs for printing content in the Front End in Open-Xchange Server 6 and OX App Suite before 6.22.8-rev8, 6.22.9 before 6.22.9-rev15m, 7.x before 7.6.1-rev25, and 7.6.2 before 7.6.2-rev20 allows remote attackers to inject…

• CVE-2013-7143Jan 26, 2014
  Open-Xchange

  Appsuite
  risk 0.00cvss —epss 0.00

  Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite 7.4.1 allows remote attackers to inject arbitrary web script or HTML via the title in a mail filter rule.

• CVE-2013-7141Jan 26, 2014
  Open-Xchange

  Appsuite
  risk 0.00cvss —epss 0.00

  Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite 7.4.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to crafted "<%" tags.