Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / open-xchange

open-xchange

272 tracked vulnerabilities.

CVE-2022-43699 MEDIUM

OX App Suite < 7.10.6-rev30 - Server-Side Request Forgery via Email Account Discovery

CVE-2022-43698 MEDIUM

OX App Suite < 7.10.6-rev30 - Server-Side Request Forgery via POP3 Account Configuration

CVE-2022-43697 MEDIUM

OX App Suite < 7.10.6-rev30 - Cross-Site Scripting via Activity Tracking Adapter

CVE-2022-43696 MEDIUM

OX App Suite < 7.10.6-rev20 - Cross-Site Scripting via Upsell Ads

CVE-2022-37310 MEDIUM

Open-xchange Appsuite < 7.10.5 - XSS

CVE-2022-37309 MEDIUM

Open-xchange Appsuite < 7.10.5 - XSS

CVE-2022-29853 MEDIUM

Open-xchange Appsuite < 7.10.5 - XSS

CVE-2022-29852 MEDIUM

Open-xchange Appsuite < 7.10.5 - XSS

CVE-2022-37308 MEDIUM

Open-xchange Appsuite < 7.10.5 - XSS

CVE-2022-37313 MEDIUM

Open-xchange Appsuite < 7.10.5 - SSRF

CVE-2022-37312 MEDIUM

OX App Suite <7.10.6 - DoS

CVE-2022-37311 MEDIUM

OX App Suite <7.10.6 - DoS

CVE-2022-37307 MEDIUM

Open-xchange Appsuite < 7.10.5 - XSS

CVE-2022-31469 MEDIUM

OX App Suite <7.10.6 - XSS

CVE-2022-31468 MEDIUM

OX App Suite < 8.2 - Cross-Site Scripting via Attachment or OX Drive Content

CVE-2022-29851 CRITICAL

OX App Suite < 7.10.6 - OS Command Injection via EPS Document Disguised as PDF

CVE-2022-24406 MEDIUM

OX App Suite <= 7.10.6 - Server-Side Request Forgery via Predictable Multipart Boundary

CVE-2022-24405 CRITICAL

OX App Suite <7.10.6 - Code Injection

CVE-2022-23101 MEDIUM

OX App Suite <= 7.10.6 - Cross-Site Scripting via Deep Link in Email Message

CVE-2022-23100 CRITICAL

OX App Suite <= 7.10.6 - OS Command Injection via Documentconverter

CVE-2022-23099 MEDIUM

OX App Suite < 7.10.6 - Cross-Site Scripting via Block-Wise Read

CVE-2021-44213 MEDIUM

OX App Suite <= 7.10.5 - Cross-Site Scripting via UUEncoded Multipart Message

CVE-2021-44212 MEDIUM

OX App Suite <= 7.10.5 - Cross-Site Scripting via Trailing Control Character

CVE-2021-44211 MEDIUM

OX App Suite <= 7.10.5 - Cross-Site Scripting via HTML Email Signature Class Attribute

CVE-2021-44210 MEDIUM

OX App Suite <= 7.10.5 - Cross-Site Scripting via NIFF Data

Previous Page 4 of 11 Next

Products

open-xchange_appsuite 157 ox_app_suite 48 dovecot 16 open-xchange_appsuite_backend 14 open-xchange_server 13 ox_guard 11 open-xchange_appsuite_frontend 8 open-xchange_appsuite_office 4 open-xchange_documents 3 app_suite 2 open-xchange 2 documentconverter-api 1 office_web 1 ox_cloud 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy