CVE-2017-17060
https://notcve.org/view.php?id=CVE-2017-17060
OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: Insecure Permissions. OX Software GmbH OX App Suite versión 7.8.4 y anteriores, se ven afectadas por: Permisos Inseguros. • http://ox.com https://documentation.open-xchange.com/components/releasenotes/7.8.3 • CWE-275: Permission Issues •
CVE-2017-17061
https://notcve.org/view.php?id=CVE-2017-17061
OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS). OX Software GmbH OX App Suite versión 7.8.4 y anteriores, se ven afectados por: Cross Site Scripting (XSS). • http://ox.com https://documentation.open-xchange.com/components/releasenotes/7.8.3 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2017-5210
https://notcve.org/view.php?id=CVE-2017-5210
Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Information Exposure. Open-Xchange GmbH OX App Suite versión 7.8.3 y anteriores, se ven afectados por: Exposición de la Información. • http://open-xchange.com http://ox.com https://documentation.open-xchange.com/7.8.4/release-notes/release-notes.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2017-5211
https://notcve.org/view.php?id=CVE-2017-5211
Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Content Spoofing. Open-Xchange GmbH OX App Suite versión 7.8.3 y anteriores, se ven afectados por: Suplantación de Contenido. • http://open-xchange.com http://ox.com https://documentation.open-xchange.com/7.8.4/release-notes/release-notes.html • CWE-20: Improper Input Validation •
CVE-2017-5213
https://notcve.org/view.php?id=CVE-2017-5213
Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Cross Site Scripting (XSS). Open-Xchange GmbH OX App Suite versión 7.8.3 y anteriores, se ven afectados por: Cross Site Scripting (XSS). • http://open-xchange.com http://ox.com https://documentation.open-xchange.com/7.8.4/release-notes/release-notes.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •