CVE-2015-5375

Cross-site scripting (XSS) vulnerability in unspecified dialogs for printing content in the Front End in Open-Xchange Server 6 and OX App Suite before 6.22.8-rev8, 6.22.9 before 6.22.9-rev15m, 7.x before 7.6.1-rev25, and 7.6.2 before 7.6.2-rev20 allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to object properties.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:open-xchange:open-xchange_server:*:*:*:*:*:*:*:*
cpe:2.3:a:open-xchange:open-xchange_appsuite:*:rev19:*:*:*:*:*:*

Information

Published : 2015-09-28 09:59

Updated : 2018-10-09 12:57


NVD link : CVE-2015-5375

Mitre link : CVE-2015-5375


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

open-xchange

  • open-xchange_appsuite
  • open-xchange_server