PT-2019-13547 · Open Xchange · Ox App Suite

Manas Gupta

Publicado

2019-10-14

Atualizado

2019-10-16

CVE-2019-14227

CVSS v3.1

6.1

Média

Vetor

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions OX App Suite versions 7.10.1 through 7.10.2

Description The issue allows for cross-site scripting (XSS), which is a type of attack where an attacker can inject malicious scripts into a website, potentially allowing them to steal user data or take control of the user's session.

Recommendations For OX App Suite versions 7.10.1 and 7.10.2, at the moment, there is no information about a newer version that contains a fix for this issue.

Exploit

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79

Identificadores relacionados

CVE-2019-14227

Produtos afetados

Ox App Suite

PT-2019-13547 · Open Xchange · Ox App Suite

CVE-2019-14227

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4