An open redirection vulnerability has been reported for a version of the Spring Framework which is shipped with OX App Suite backend versions 7.10.6-rev66 and 8.24.7.
ea468f342f7a0408607b9ba93475fecd68d35bad982ae0c29036847c45ddb637OX App Suite frontend version 7.10.6-rev42 suffers from cross site scripting vulnerabilities. OX App Suite backend versions 7.10.6-rev61 and 8.22 suffer from a denial of service vulnerability.
6e2623da412af99e461937edfe417e674fe26af8c59f680b4bb1489413794ba8OX App Suite frontend version 7.10.6-rev44 suffers from a cross site scripting vulnerability.
1360b972ed80fc23c7c8b3b040403a512a3915dd0f5a8e6e9c5792c83a0e4c39OX App Suite version 8.21 cross site scripting and information disclosure vulnerabilities.
ab18d35bc5d3677af88f7c327825d1007c6a7376fe5c5b0c3ee1c6a433e1e8b7OX App Suite version 7.10.6 suffers from cross site scripting and deserialization vulnerabilities.
d67b15e5e463386e7b28cf5d7d03eebfcf3f668423493ad7f356fc890f038561Varying revisions of OX App Suite version 7.10.6 suffer from cross site scripting and resource consumption vulnerabilities.
32ea285b9f1d95b8d51ee4996b126ef6f484d7f18c109b4ccf06178533953e56OX App Suite version 7.10.6-rev51 suffers from an access control vulnerability. Version 7.10.6-rev34 suffers from multiple cross site scripting vulnerabilities.
80185f3d2633831b5738bc1126710375d2e7d24e073ff394c679caa4c61efc56OX App Suite version 7.10.6-rev50 suffers from remote code execution and LDAP injection vulnerabilities. Version 7.10.6-rev33 suffers from a cross site scripting vulnerability.
592f2b04fcdcc6f8a886a43ccea679f6723dca85956b3e11029cce5b8e4022ecOX App Suite suffers from remote SQL injection, server-side request forgery, cross site scripting, improper neutralization, command injection, and exposure of sensitive information vulnerabilities.
719567b07d01c758653bc54850b5ade966278aebda53de372168e4c5c9d605c8OX App Suite suffers from server-side request forgery, command injection, uncontrolled resource consumption, code injection, authorization bypass, and insecure storage vulnerabilities. Various versions in the 7.10.x and 8.x branches are affected.
a27979ae3ae36aed54def31f404e98c49b579e2113420246b0b046bb9f32e18dOX App Suite has patched for sensitive information disclosure, cross site scripting, improper access control, authorization bypass, and resource consumption vulnerabilities. Some of the issues affect OX App Suite frontend version 7.10.6-rev23 and some affect OX App Suite backend version 7.10.6-rev36.
155ec55f6da0ebb83ce88e1e80511fb3da026e9c6a7fd7336c4fe3969b7e009aOX App Suite suffers from cross site scripting and server-side request forgery vulnerabilities.
5da321216ffd148c932f83887a1cd3f3515a69d20e80fbfd6a71cda91af29547OX App Suite versions 7.10.6 and below suffer from cross site scripting, server-side request forgery, and resource exhaustion vulnerabilities.
ba6b2cbc7f4a93851df3e4965e0195411ca754b70e55778fee524c5fadf9d260OX App Suite versions 8.2 and earlier suffer from multiple cross site scripting vulnerabilities. Versions 7.10.6 and earlier suffer from a command injection vulnerability.
df934839b9bb30ae7abcc52dec7595f09a5e03c04493af0116b03ecf48aee33bOpen-Xchange App Suite versions 7.10.6 and below suffer from OS command injection and cross site scripting vulnerabilities. One particular cross site scripting issue only affects versions 7.10.5 and below.
145c2f74cfe9370dfbec4b0f72f06c5a67138afef07940be7a7e97d9a4b1f072OX App Suite versions 7.10.5 and below suffer from multiple cross site scripting vulnerabilities.
439326d231827e72e3d0872c060c5c62dddd34691c556c0825bfa59c8c7f1d96OX App Suite versions 7.10.5 and below suffer from cross site scripting and information disclosure vulnerabilities.
c99f2e36cd127fb981a5512d68d67833a23fbcadee9ad6f6f9c134c3632fb7efOX App Suite and OX Documents suffer from cross site scripting, code injection, path traversal, and input validation vulnerabilities. Most of these issues affect 7.10.5 and below with one affecting 7.10.4 and below.
8ee4a4656fa2949ce351598464b1ce8aca906f19ee6d4f991c80fc45a41c8c4bOX Documents version 7.10.5 suffers from multiple improper authorization vulnerabilities.
fdc415c0e1479fc1bbd7c9da23f2c1893080132040e14750beb56328b7efaa61Open-Xchange OX App Suite, OX Guard, and OX Documents suffer from server-side request forgery and cross site scripting vulnerabilities. Some of these issues only affect version 7.10.3 while some affect 7.10.4 and earlier.
264f5c37a41ec6bca16aeacc29650f3f157abec2e181ef828458e50fe0bc2740OX App Suite versions 7.10.4 and below suffer from cross site scripting and server-side request forgery vulnerabilities. OX Guard versions 2.10.4 and below suffer from a denial of service vulnerability.
f79fdb3de2e0adf5d96f8bd0f53e9ea78572bc1ad06052cccf66726ab09192b0OX App Suite and OX Documents suffer from server-side request forgery and multiple cross site scripting vulnerabilities. Various versions are affected including 7.10.4 and 7.10.3.
ba8c16584bc43d579279e941f2d796ec74153f6debe5a7df85b435f86196a43cOX App Suite and OX Documents versions 7.10.3 and some prior versions suffer from information exposure, server-side request forgery, and cross site scripting vulnerabilities.
4fa6c054c00387a832592e2040a5da296d518180b40ccda03e95e88b581e3a1dOX App Suite and OX Documents suffer from access control bypass, cross site scripting, and improper input validation vulnerabilities. Multiple version ranges are affected.
51edab0377b8fe0d44554f6f7f4760f83af8457588e97679c30c8d3bae31cdc2OX Guard version 2.10.3 suffers from server-side request forgery and cross site scripting vulnerabilities.
893145b9db604b7ed2accebb80ae3b758c5c402c2edddeae5cf393b911b11fb3
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed