Cross-site scripting (XSS) vulnerability in unspecified dialogs for printing content in the Front End in Open-Xchange Server 6 and OX App Suite before 6.22.8-rev8, 6.22.9 before 6.22.9-rev15m, 7.x before 7.6.1-rev25, and 7.6.2 before 7.6.2-rev20 allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to object properties.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2015-09-28 09:59
Updated : 2018-10-09 12:57
NVD link : CVE-2015-5375
Mitre link : CVE-2015-5375
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
open-xchange
- open-xchange_appsuite
- open-xchange_server