Showing 1 - 25 of 25

Files from Martin Heiland

Email address	martin.heiland at open-xchange.com
First Active	2014-09-15
Last Active	2020-10-19

OX App Suite / OX Documents 7.10.3 XSS / Server-Side Request Forgery: Posted Oct 19, 2020; Authored by Martin Heiland, Zeeshan Khalid, Sreejith Krishnan R, MOGWAI LABS, notoriousrip; OX App Suite and OX Documents versions 7.10.3 and some prior versions suffer from information exposure, server-side request forgery, and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; advisories | CVE-2020-15002, CVE-2020-15003, CVE-2020-15004; MD5 | a516b6243bb0f374586eb83076157208; Download | Favorite | View

OX App Suite / OX Documents XSS / SSRF / Bypass: Posted Aug 21, 2020; Authored by Martin Heiland; OX App Suite and OX Documents suffer from access control bypass, cross site scripting, and improper input validation vulnerabilities. Multiple version ranges are affected.; tags | exploit, vulnerability, xss, bypass; advisories | CVE-2020-12643, CVE-2020-12644, CVE-2020-12645, CVE-2020-12646, CVE-2020-8542; MD5 | ab797e28a3a58caa12fe105e311a7704; Download | Favorite | View

OX Guard 2.10.3 Cross Site Scripting / Server-Side Request Forgery: Posted Jun 12, 2020; Authored by Martin Heiland; OX Guard version 2.10.3 suffers from server-side request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; advisories | CVE-2020-9426, CVE-2020-9427; MD5 | fbb358adaf8635397a48eb79a5b0cf1a; Download | Favorite | View

OX App Suite / OX Documents 7.10.3 XSS / SSRF / Improper Validation: Posted Jun 12, 2020; Authored by Martin Heiland, Johannes Moritz, zee_shan, chbi, Hasan Ali; OX App Suite and OX Documents versions 7.10.3 and below suffer from server-side request forgery, cross site scripting, improper parameter validation, and XML injection vulnerabilities.; tags | exploit, vulnerability, xss; advisories | CVE-2019-18846, CVE-2020-8541, CVE-2020-8542, CVE-2020-8543, CVE-2020-8544; MD5 | e2537f0ecbd0317d3b111655ee78f0de; Download | Favorite | View

Open-Xchange App Suite / Documents Server-Side Request Forgery: Posted Feb 21, 2020; Authored by Martin Heiland; Open-Xchange App Suite and Documents versions 7.10.2 and below suffer from multiple server-side request forgery vulnerabilities.; tags | exploit, vulnerability; advisories | CVE-2019-18846, CVE-2019-9853; MD5 | 43acfce60891d606ddbc7bb9726ef5ad; Download | Favorite | View

OX App Suite 7.10.2 Cross Site Scripting / Improper Access Control: Posted Jan 2, 2020; Authored by Martin Heiland; Open-Xchange App Suite versions 7.10.2 and below suffer from cross site scripting and improper access control vulnerabilities.; tags | exploit, vulnerability, xss; advisories | CVE-2019-16716, CVE-2019-16717; MD5 | e0efb2989e7241b1f05cf48ea022f5f7; Download | Favorite | View

Open-Xchange OX App Suite SSRF / XSS / Information Disclosure / Access Controls: Posted Oct 14, 2019; Authored by MantiS, Martin Heiland, Michael Medvedev, Manas Gupta, hd7exploit; Various Open-Xchange OX App Suite versions suffer from server-side request forgery, cross site scripting, information disclosure, and improper access control vulnerabilities.; tags | exploit, vulnerability, xss, info disclosure; advisories | CVE-2019-14225, CVE-2019-14226, CVE-2019-14227; MD5 | bfbf59df0658a611dc03b03bbb86a669; Download | Favorite | View

Open-Xchange OX App Suite Content Spoofing / Cross Site Scripting: Posted Aug 16, 2019; Authored by Martin Heiland, zee_shan; Open-Xchange OX App Suite suffers from a content spoofing, cross site scripting, and information disclosure vulnerabilities. Versions affected vary depending on the vulnerability.; tags | exploit, spoof, vulnerability, xss, info disclosure; advisories | CVE-2019-11521, CVE-2019-11522, CVE-2019-11806; MD5 | e4f984f70b4911993c1fb35b6018270a; Download | Favorite | View

Open-Xchange OX Guard Cross Site Scripting / Signature Validation: Posted Aug 16, 2019; Authored by Hanno Boeck, Juraj Somorovsky, Martin Heiland, Jorg Schwenk, Sebastian Schinzel, Damian Poddebniak, Jens Muller, Marcus Brinkmann; Open-Xchange OX Guard versions 7.10.2 and below suffer from a cross site scripting vulnerability. Open-Xchange OX Guard versions 7.10.1 and below, 2.10.2 and below suffer from a signature validation vulnerability.; tags | exploit, xss; advisories | CVE-2018-9997, CVE-2019-11521; MD5 | 8a4509aba45a3f48bf32078dfdbc3fd1; Download | Favorite | View

Open-Xchange AppSuite 7.10.1 Information Disclosure / Improper Access Control: Posted Apr 5, 2019; Authored by Martin Heiland; Open-Xchange AppSuite versions 7.10.1 and below suffer from information exposure and improper access control vulnerabilities.; tags | exploit, vulnerability, info disclosure; advisories | CVE-2019-7158, CVE-2019-7159; MD5 | 49339a0d35cc917c045e135d1d0cc7bf; Download | Favorite | View

Open-Xchange OX App Suite Cross Site Scripting / SSRF: Posted Jan 21, 2019; Authored by Martin Heiland, Secator, Zhihua Yao, stemcloud, Gamal negm eldin; Open-Xchange OX App Suite suffers from cross site scripting and server-side request forgery vulnerabilities. The vulnerabilities spawn a multitude of versions.; tags | exploit, vulnerability, xss; advisories | CVE-2018-13103, CVE-2018-13104; MD5 | 0f83a06f2870765960fa46b3d0ee12cc; Download | Favorite | View

OX App Suite 7.8.4 XSS / Privilege Management / SSRF / Traversal: Posted Jun 8, 2018; Authored by Martin Heiland; OX App Suite versions 7.8.4 and below suffer from cross site scripting, improper privilege management, content spoofing, server-side request forgery, and path traversal vulnerabilities.; tags | exploit, spoof, vulnerability, xss; advisories | CVE-2017-17062, CVE-2018-5751, CVE-2018-5752, CVE-2018-5753, CVE-2018-5754, CVE-2018-5755, CVE-2018-5756; MD5 | 17c9e0a5fb461f27f24ee61b974f87d2; Download | Favorite | View

Open-Xchange Guard 2.4.2 Cross Site Scripting: Posted Sep 13, 2016; Authored by Martin Heiland, Benjamin Daniel Mussler; Open-Xchange Guard versions 2.4.2 and below suffer from multiple cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; advisories | CVE-2016-6851, CVE-2016-6853, CVE-2016-6854; MD5 | d44f33ba21304aefcec92be18ae9b028; Download | Favorite | View

Open-Xchange App Suite 7.8.2 Cross Site Scripting: Posted Sep 13, 2016; Authored by Martin Heiland; Open-Xchange App Suite versions 7.8.2 and below suffer from multiple cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; advisories | CVE-2016-5740; MD5 | 7a2af6d51c5db2a16311fd0e0642821d; Download | Favorite | View

Open-Xchange App Suite 7.8.1 Cross Site Scripting: Posted Jul 13, 2016; Authored by Martin Heiland; Open-Xchange App Suite version 7.8.1 suffers from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2016-5124; MD5 | d60a7f33ad89664b8be9155ff78dc07f; Download | Favorite | View

Open-Xchange App Suite 7.8.1 Information Disclosure: Posted Jun 22, 2016; Authored by Martin Heiland; Open-Xchange App Suite versions 7.8.1 and below suffer from an information disclosure vulnerability.; tags | exploit, info disclosure; advisories | CVE-2016-4027; MD5 | 910936d4615de9cca8522b94efda498b; Download | Favorite | View

Open-Xchange Guard 2.2.0 / 2.0 Private Key Disclosure: Posted Mar 3, 2016; Authored by Martin Heiland; Open-Xchange Guard versions 2.2.0 and 2.0 suffer from a PGP private key disclosure vulnerability.; tags | advisory, info disclosure; advisories | CVE-2015-8542; MD5 | f0c1c9f01b082805ec57a6b902c849e6; Download | Favorite | View

Open-Xchange Guard 2.0 Cross Site Scripting: Posted Nov 17, 2015; Authored by Martin Heiland, Eduard Hauck; Open-Xchange Guard version 2.0 suffers from a cross site scripting vulnerability.; tags | advisory, xss; advisories | CVE-2015-7385; MD5 | 7bcf96196babe6f26d2f7cccfa2c4dd3; Download | Favorite | View

Open-Xchange Server 6 / OX AppSuite Cross Site Scripting: Posted Sep 23, 2015; Authored by Martin Heiland; Open-Xchange Server 6 version 6.22.9 and AppSuite versions 7.6.2 and below suffer from a cross site scripting vulnerability.; tags | advisory, xss; advisories | CVE-2015-5375; MD5 | 99dde2180ecb64791f723bcd32efcafa; Download | Favorite | View

Guard 2.0.0-rev7 SQL Injection: Posted Sep 23, 2015; Authored by Martin Heiland; Guard versions 2.0.0-rev7 and below suffer from a remote SQL injection vulnerability.; tags | advisory, remote, sql injection; advisories | CVE-2015-5703; MD5 | 7181ab5f46a2f86c4174378b16b57a6d; Download | Favorite | View

Open-Xchange Server 6 / OX AppSuite Cross Site Scripting: Posted Apr 27, 2015; Authored by Martin Heiland; Open-Xchange Server 6 and OX AppSuite versions 7.6.1 and below suffer from multiple cross site scripting vulnerabilities.; tags | advisory, vulnerability, xss; advisories | CVE-2015-1588; MD5 | a65ec62667e3fc8fb957722446b0ebd5; Download | Favorite | View

Open-Xchange Server 6 / OX AppSuite 7.6.1 Exposure: Posted Feb 12, 2015; Authored by Martin Heiland; Open-Xchange Server 6 / OX AppSuite suffers from an information exposure vulnerability in versions 7.6.1 and below.; tags | advisory; advisories | CVE-2014-9466; MD5 | 6123d10eae5f0d519ad1eccd689369d0; Download | Favorite | View

Open-Xchange Server 6 / OX AppSuite 7.6.1 Cross Site Scripting: Posted Jan 5, 2015; Authored by Martin Heiland, John de Kroon; Open-Xchange Server 6 / OX AppSuite versions 7.6.1 and below suffer from a cross site scripting vulnerability.; tags | advisory, xss; advisories | CVE-2014-8993; MD5 | b7382005ce24ee724c045fbdf1adca9c; Download | Favorite | View

OX App Suite 7.6.0 SQL Injection: Posted Nov 7, 2014; Authored by Martin Heiland; OX App Suite versions 7.6.0 and below suffer from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; advisories | CVE-2014-7871; MD5 | 688e3e9eb49ee93380a01d210c91dbc5; Download | Favorite | View

Open-Xchange 7.6.0 XSS / SSRF / Traversal: Posted Sep 15, 2014; Authored by Martin Heiland; Open-Xchange versions 7.6.0 and below suffer from absolute path traversal, server-side request forgery, XXE injection, and cross site scripting vulnerabilities.; tags | advisory, vulnerability, xss, file inclusion, xxe; advisories | CVE-2014-5234, CVE-2014-5235, CVE-2014-5236, CVE-2014-5237, CVE-2014-5238; MD5 | b1b8a9129b770331b8428b9bd44bff0d; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 155 files
Ubuntu 65 files
Gentoo 13 files
LiquidWorm 12 files
Google Security Research 10 files
George Tsimpidas 5 files
Alexei Kojenov 5 files
Glazvunov 4 files
Jyotsna Adhana 4 files
Ankita Pal 4 files

File Archives

Systems

AIX (418)
Apple (1,742)
BSD (368)
Cisco (1,898)
Debian (5,945)
Fedora (1,688)
FreeBSD (1,241)
Gentoo (3,957)
HPUX (872)
iOS (274)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (38,640)
Mac OS X (669)
Mandriva (3,105)
NetBSD (255)
OpenBSD (472)
RedHat (9,183)
Slackware (941)
Solaris (1,593)
SUSE (1,444)
Ubuntu (6,935)
UNIX (8,758)
UnixWare (179)
Windows (5,675)
Other

Files from Martin Heiland

File Archive:

October 2020

Top Authors In Last 30 Days

File Tags

File Archives

Systems