Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / open-xchange

open-xchange

272 tracked vulnerabilities.

CVE-2023-26442 LOW

Open-Xchange App Suite Cacheservice - Sproxyd Redirect Server-Side Request Forgery

CVE-2023-26441 MEDIUM

open-xchange_appsuite_office < 8.11 - Path Traversal in Cacheservice

CVE-2023-26440 HIGH

Open-Xchange AppSuite Office <= 8.11 - SQL Injection

CVE-2023-26439 HIGH

Open-Xchange AppSuite Office <= 8.11 - SQL Injection

CVE-2023-26438 MEDIUM

Open-Xchange App Suite - JDK DNS Cache Server-Side Request Forgery

CVE-2023-26430 LOW

open-xchange_appsuite_backend - Authenticated Command Injection via SIEVE Mail-Filter Rules

CVE-2023-26436 HIGH

Open-Xchange AppSuite Backend <= 7.10.6 - Deserialization Code Injection

CVE-2023-26435 MEDIUM

open-xchange_appsuite_backend < 7.10.6 - Server-Side Request Forgery via Manipulated ODT Documents

CVE-2023-26434 MEDIUM

open-xchange_appsuite_backend < 7.10.6 - Denial of Service via POP3 Capabilities Response

CVE-2023-26433 MEDIUM

open-xchange_appsuite_backend < 7.10.6 - Denial of Service via IMAP Capabilities Response

CVE-2023-26432 MEDIUM

open-xchange_appsuite_backend < 7.10.6 - Denial of Service via SMTP Capabilities Response

CVE-2023-26431 MEDIUM

Open-Xchange App Suite - IPv4-Mapped IPv6 Server-Side Request Forgery

CVE-2023-26429 LOW

Open-Xchange AppSuite Backend - Control Character Injection via User Feedback

CVE-2023-26428 MEDIUM

Open-Xchange AppSuite Backend - Information Disclosure via Snippet ID

CVE-2023-26427 LOW

open-xchange_appsuite_backend < 7.10.6 - Unauthenticated Sensitive Information Exposure via Insecure File Permissions

CVE-2023-24605 MEDIUM

OX App Suite <7.10.6-rev37 - Info Disclosure

CVE-2023-24604 MEDIUM

OX App Suite <7.10.6-rev37 - Info Disclosure

CVE-2023-24603 MEDIUM

OX App Suite <7.10.6-rev37 - Info Disclosure

CVE-2023-24602 MEDIUM

OX App Suite < 7.10.6 - Cross-Site Scripting via Tumblr Portal Widget

CVE-2023-24601 MEDIUM

OX App Suite < 7.10.6 - Cross-Site Scripting via Jslob API Registry Sub-Tree

CVE-2023-24600 MEDIUM

OX App Suite <7.10.6-rev37 - Auth Bypass

CVE-2023-24599 MEDIUM

OX App Suite <7.10.6-rev37 - Privilege Escalation

CVE-2023-24598 MEDIUM

OX App Suite <7.10.6-rev37 - Info Disclosure

CVE-2023-24597 MEDIUM

OX App Suite <7.10.6-rev24 - Info Disclosure

CVE-2022-37306 MEDIUM

OX App Suite < 7.10.6 - Cross-Site Scripting via Upsell Trigger

Previous Page 3 of 11 Next

Products

open-xchange_appsuite 157 ox_app_suite 48 dovecot 16 open-xchange_appsuite_backend 14 open-xchange_server 13 ox_guard 11 open-xchange_appsuite_frontend 8 open-xchange_appsuite_office 4 open-xchange_documents 3 app_suite 2 open-xchange 2 documentconverter-api 1 office_web 1 ox_cloud 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy