Open-xchange - CVE CyberSecurity Database News

Apr 15, 2023 XSS Exploit Open-xchange

CVE-2022-43697 - XSS Vulnerability in OX App Suite before 7.10.6-rev30 Exploiting Activity Tracking Adapter JSLOB Definition

Summary: A recent vulnerability (CVE-2022-43697) discovered in OX App Suite versions before 7.10.6-rev30 exposes the web application to Cross-Site Scripting (XSS) attacks due

Apr 15, 2023 Exploit Open-xchange

CVE-2022-43699: Security Vulnerability in OX App Suite Before 7.10.6-rev30, Exploiting SSRF to Evade Deny-Lists

CVE-2022-43699 is a security vulnerability found in the Open-Xchange (OX) App Suite, versions before 7.10.6-rev30. This vulnerability allows an attacker to exploit Server-Side

Oct 25, 2022 Open-xchange

CVE-2022-29851 - OS Command Injection Vulnerability in OX App Suite's Document Converter with Ghostscript Support through 7.10.6

A recently discovered vulnerability in the OX App Suite's Document Converter (CVE-2022-29851) allows attackers to achieve remote OS command injection. This vulnerability exclusively