Shodan
Vulnerabilities
Vulnerable Software
Open-Xchange:  >> Open-Xchange Appsuite  >> 7.4.0  Security Vulnerabilities
CVE-2013-7485
Cross-site scripting (XSS) vulnerability in the backend in Open-Xchange (OX) AppSuite 7.2.x before 7.2.2-rev26 and 7.4.x before 7.4.0-rev16 allows remote attackers to inject arbitrary web script or HTML via the publication name, which is not properly handled in an error message. NOTE: this vulnerability was SPLIT from CVE-2013-6242 because it affects different sets of versions.
CVSS Score
6.1
EPSS Score
0.009
Published
2020-01-02
CVE-2013-7486
Cross-site scripting (XSS) vulnerability in the backend in Open-Xchange (OX) AppSuite 7.2.x before 7.2.2-rev27 and 7.4.x before 7.4.0-rev20 allows remote attackers to inject arbitrary web script or HTML via the body of an email. NOTE: this vulnerability was SPLIT from CVE-2013-6242 because it affects different sets of versions.
CVSS Score
6.1
EPSS Score
0.009
Published
2020-01-02
CVE-2013-6242
Cross-site scripting (XSS) vulnerability in the frontend in Open-Xchange (OX) AppSuite 6.22.3 before 6.22.3-rev5 and 6.22.4 before 6.22.4-rev12 allows remote attackers to inject arbitrary web script or HTML via the subject of an email. NOTE: the vulnerabilities related to the body of the email and the publication name were SPLIT from this CVE ID because they affect different sets of versions.
CVSS Score
6.1
EPSS Score
0.007
Published
2020-01-02
CVE-2019-14226
OX App Suite through 7.10.2 has Insecure Permissions.
CVSS Score
8.1
EPSS Score
0.002
Published
2019-10-14
CVE-2019-7159
OX App Suite 7.10.1 and earlier allows Information Exposure.
CVSS Score
7.5
EPSS Score
0.004
Published
2019-06-18
CVE-2019-7158
OX App Suite 7.10.0 and earlier has Incorrect Access Control.
CVSS Score
9.8
EPSS Score
0.005
Published
2019-06-17
CVE-2017-13667
OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: SSRF.
CVSS Score
9.9
EPSS Score
0.004
Published
2019-05-23
CVE-2017-13668
OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS).
CVSS Score
5.4
EPSS Score
0.003
Published
2019-05-23
CVE-2017-15029
Open-Xchange GmbH OX App Suite 7.8.4 and earlier is affected by: SSRF.
CVSS Score
4.3
EPSS Score
0.002
Published
2019-05-23
CVE-2017-15030
Open-Xchange GmbH OX App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS).
CVSS Score
6.1
EPSS Score
0.004
Published
2019-05-23


Products
Pricing
Contact Us

Shodan ® - All rights reserved