CVE-2013-5698

Open-xchange Appsuite - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in Open-Xchange AppSuite and Server before 6.22.0 rev16, 6.22.1 before rev19, 7.0.1 before rev7, 7.0.2 before rev11, and 7.2.0 before rev8 allows remote authenticated users to inject arbitrary web script or HTML via a delivery=view action, aka Bug ID 26373, a different vulnerability than CVE-2013-3106.

References (1)

Scores

EPSS 0.0016
EPSS Percentile 36.5%

Details

CWE
CWE-79
Status published
Products (11)
open-xchange/open-xchange_appsuite
open-xchange/open-xchange_appsuite
open-xchange/open-xchange_appsuite
open-xchange/open-xchange_appsuite
open-xchange/open-xchange_appsuite
open-xchange/open-xchange_server
open-xchange/open-xchange_server
open-xchange/open-xchange_server
open-xchange/open-xchange_server
open-xchange/open-xchange_server
... and 1 more
Published Sep 05, 2013
Tracked Since Feb 18, 2026