Open-Xchange OX App Suite suffers from a content spoofing, cross site scripting, and information disclosure vulnerabilities. Versions affected vary depending on the vulnerability.
2071c53e872acfa5491162c42ffc088b0353ec35291faf2ce74402fd3c1328d6
OX App Suite has patched for sensitive information disclosure, cross site scripting, improper access control, authorization bypass, and resource consumption vulnerabilities. Some of the issues affect OX App Suite frontend version 7.10.6-rev23 and some affect OX App Suite backend version 7.10.6-rev36.
155ec55f6da0ebb83ce88e1e80511fb3da026e9c6a7fd7336c4fe3969b7e009a
OX App Suite suffers from cross site scripting and server-side request forgery vulnerabilities.
5da321216ffd148c932f83887a1cd3f3515a69d20e80fbfd6a71cda91af29547
OX App Suite versions 8.2 and earlier suffer from multiple cross site scripting vulnerabilities. Versions 7.10.6 and earlier suffer from a command injection vulnerability.
df934839b9bb30ae7abcc52dec7595f09a5e03c04493af0116b03ecf48aee33b
OX App Suite versions 7.10.5 and below suffer from multiple cross site scripting vulnerabilities.
439326d231827e72e3d0872c060c5c62dddd34691c556c0825bfa59c8c7f1d96
OX App Suite versions 7.10.5 and below suffer from cross site scripting and information disclosure vulnerabilities.
c99f2e36cd127fb981a5512d68d67833a23fbcadee9ad6f6f9c134c3632fb7ef
OX App Suite and OX Documents suffer from cross site scripting, code injection, path traversal, and input validation vulnerabilities. Most of these issues affect 7.10.5 and below with one affecting 7.10.4 and below.
8ee4a4656fa2949ce351598464b1ce8aca906f19ee6d4f991c80fc45a41c8c4b
Open-Xchange OX App Suite, OX Guard, and OX Documents suffer from server-side request forgery and cross site scripting vulnerabilities. Some of these issues only affect version 7.10.3 while some affect 7.10.4 and earlier.
264f5c37a41ec6bca16aeacc29650f3f157abec2e181ef828458e50fe0bc2740
OX App Suite versions 7.10.4 and below suffer from cross site scripting and server-side request forgery vulnerabilities. OX Guard versions 2.10.4 and below suffer from a denial of service vulnerability.
f79fdb3de2e0adf5d96f8bd0f53e9ea78572bc1ad06052cccf66726ab09192b0
OX App Suite and OX Documents suffer from server-side request forgery and multiple cross site scripting vulnerabilities. Various versions are affected including 7.10.4 and 7.10.3.
ba8c16584bc43d579279e941f2d796ec74153f6debe5a7df85b435f86196a43c
OX App Suite and OX Documents versions 7.10.3 and some prior versions suffer from information exposure, server-side request forgery, and cross site scripting vulnerabilities.
4fa6c054c00387a832592e2040a5da296d518180b40ccda03e95e88b581e3a1d
OX App Suite and OX Documents suffer from access control bypass, cross site scripting, and improper input validation vulnerabilities. Multiple version ranges are affected.
51edab0377b8fe0d44554f6f7f4760f83af8457588e97679c30c8d3bae31cdc2
OX App Suite and OX Documents versions 7.10.3 and below suffer from server-side request forgery, cross site scripting, improper parameter validation, and XML injection vulnerabilities.
64ac41f600218c8a53f85f7edaf868fd9208d415671cac26f51f2f16940095bb
Open-Xchange App Suite and Documents versions 7.10.2 and below suffer from multiple server-side request forgery vulnerabilities.
9e95ed9b8b18b7aa67aa539e677d18a46c58d0f74c70f908ef7a336569ff51e9
Various Open-Xchange OX App Suite versions suffer from server-side request forgery, cross site scripting, information disclosure, and improper access control vulnerabilities.
6bbc17512735cd2e68b49123c22dd4e31db09620ca1cc4d07081dd51dda4894a
Ox App Suite versions 7.8.4 and 7.8.3 suffer from cross site scripting, cross site request forgery, and information disclosure vulnerabilities.
ffdbe5e04f303db5e8ad0da091038bf8976a3f72b1e572115af58f427a4f8073
OX App Suite version 7.8.5 suffers from XML external entity injection, information disclosure, and cross site scripting vulnerabilities.
c70d8220abd64fcb08a298d9510add6aeba463a05de8fedbb79e7b7f24e8956b
OX App Suite versions 7.8.4 and below suffer from cross site scripting, improper privilege management, content spoofing, server-side request forgery, and path traversal vulnerabilities.
b05b1425ad2ad09c94d5f8ea14683797a289d6404376b147dc5a8333076d15fc
Open-Xchange App Suite versions 7.8.2 and below suffer from multiple cross site scripting vulnerabilities.
357ca5858f8f3f0f5e8af6faa2268fb1efd131b5eada5dfc41eb2ddb9239f572
Open-Xchange App Suite version 7.8.1 suffers from a cross site scripting vulnerability.
54885411364ea66a6a88cc613ff3399708f6b52cbe59e735d9647a8e158559b8