Show filters
8 Total Results
Displaying 1-8 of 8
Sort by:
Attacker Value
Unknown

CVE-2020-15003

Disclosure Date: October 23, 2020 (last updated November 28, 2024)
OX App Suite through 7.10.3 allows Information Exposure because a user can obtain the IP address and User-Agent string of a different user (via the session API during shared Drive access).
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-15004

Disclosure Date: October 23, 2020 (last updated February 22, 2025)
OX App Suite through 7.10.3 allows stats/diagnostic?param= XSS.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2020-8544

Disclosure Date: June 16, 2020 (last updated February 21, 2025)
OX App Suite through 7.10.3 allows SSRF.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-8543

Disclosure Date: June 16, 2020 (last updated February 21, 2025)
OX App Suite through 7.10.3 has Improper Input Validation.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-8541

Disclosure Date: June 16, 2020 (last updated February 21, 2025)
OX App Suite through 7.10.3 allows XXE attacks.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-8542

Disclosure Date: June 16, 2020 (last updated February 21, 2025)
OX App Suite through 7.10.3 allows XSS.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2019-14225

Disclosure Date: October 14, 2019 (last updated November 27, 2024)
OX App Suite 7.10.1 and 7.10.2 allows SSRF.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2019-14227

Disclosure Date: October 14, 2019 (last updated November 27, 2024)
OX App Suite 7.10.1 and 7.10.2 allows XSS.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0