CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12885
https://notcve.org/view.php?id=CVE-2017-12885
OX Software GmbH App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS). OX Software GmbH App Suite versión 7.8.4 y anteriores estan afectadas por: Cross Site Scripting (XSS). • http://app.com http://ox.com https://documentation.open-xchange.com/7.8.3/release-notes/release-notes.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-7159 – Open-Xchange AppSuite 7.10.1 Information Disclosure / Improper Access Control
https://notcve.org/view.php?id=CVE-2019-7159
OX App Suite 7.10.1 and earlier allows Information Exposure. OX App Suite 7.10.1 y versiones anteriores permiten la exposición de la información. Open-Xchange AppSuite versions 7.10.1 and below suffer from information exposure and improper access control vulnerabilities. • https://packetstormsecurity.com/files/152404/Open-Xchange-AppSuite-7.10.1-Information-Disclosure-Improper-Access-Control.html https://www.open-xchange.com •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-7158 – Open-Xchange AppSuite 7.10.1 Information Disclosure / Improper Access Control
https://notcve.org/view.php?id=CVE-2019-7158
OX App Suite 7.10.0 and earlier has Incorrect Access Control. OX App Suite versión 7.10.0 y anteriores, presenta un control de acceso incorrecto. Open-Xchange AppSuite versions 7.10.1 and below suffer from information exposure and improper access control vulnerabilities. • https://www.open-xchange.com •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 2CVE-2018-13104 – Open-Xchange OX App Suite Cross Site Scripting / SSRF
https://notcve.org/view.php?id=CVE-2018-13104
OX App Suite 7.8.4 and earlier allows XSS. Internal reference: 58742 (Bug ID) OX App Suite, en versiones 7.8.4 y anteriores, permite Cross-Site Scripting (XSS). Referencia interna: 58742 (Bug ID) Open-Xchange OX App Suite suffers from cross site scripting and server-side request forgery vulnerabilities. The vulnerabilities spawn a multitude of versions. • http://packetstormsecurity.com/files/151243/Open-Xchange-OX-App-Suite-Cross-Site-Scripting-SSRF.html http://seclists.org/fulldisclosure/2019/Jan/46 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 2CVE-2018-13103 – Open-Xchange OX App Suite Cross Site Scripting / SSRF
https://notcve.org/view.php?id=CVE-2018-13103
OX App Suite 7.8.4 and earlier allows SSRF. OX App Suite, en versiones 7.8.4 y anteriores, permite Server-Side Request Forgery (SSRF). Open-Xchange OX App Suite suffers from cross site scripting and server-side request forgery vulnerabilities. The vulnerabilities spawn a multitude of versions. • http://packetstormsecurity.com/files/151243/Open-Xchange-OX-App-Suite-Cross-Site-Scripting-SSRF.html http://seclists.org/fulldisclosure/2019/Jan/46 • CWE-918: Server-Side Request Forgery (SSRF) •