Open-Xchange Appsuite Frontend vulnerabilities

CVE-2024-4367 [HIGH] CWE-754 CVE-2024-4367: A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execu A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thunderbird < 115.11.

CVE-2023-26449 [MEDIUM] CWE-79 CVE-2023-26449: The "OX Chat" web service did not specify a media-type when processing responses by external resourc The "OX Chat" web service did not specify a media-type when processing responses by external resources. Malicious script code can be executed within the victims context. This can lead to session hijacking or triggering unwanted actions via the web interface and API. To exploit this an attacker would require temporary access to the users account or lu

CVE-2023-26445 [MEDIUM] CWE-79 CVE-2023-26445: Frontend themes are defined by user-controllable jslob settings and could point to a malicious resou Frontend themes are defined by user-controllable jslob settings and could point to a malicious resource which gets processed during login. Malicious script code can be executed within the victims context. This can lead to session hijacking or triggering unwanted actions via the web interface and API. To exploit this an attacker would require temporar

CVE-2023-26447 [MEDIUM] CWE-79 CVE-2023-26447: The "upsell" widget for the portal allows to specify a product description. This description taken f The "upsell" widget for the portal allows to specify a product description. This description taken from a user-controllable jslob did not get escaped before being added to DOM. Malicious script code can be executed within the victims context. This can lead to session hijacking or triggering unwanted actions via the web interface and API. To exploit t

CVE-2023-26450 [MEDIUM] CWE-79 CVE-2023-26450: The "OX Count" web service did not specify a media-type when processing responses by external resour The "OX Count" web service did not specify a media-type when processing responses by external resources. Malicious script code can be executed within the victims context. This can lead to session hijacking or triggering unwanted actions via the web interface and API. To exploit this an attacker would require temporary access to the users account or l

CVE-2023-26448 [MEDIUM] CWE-79 CVE-2023-26448: Custom log-in and log-out locations are used-defined as jslob but were not checked to contain malici Custom log-in and log-out locations are used-defined as jslob but were not checked to contain malicious protocol handlers. Malicious script code can be executed within the victims context. This can lead to session hijacking or triggering unwanted actions via the web interface and API. To exploit this an attacker would require temporary access to the

CVE-2023-26446 [MEDIUM] CWE-79 CVE-2023-26446: The users clientID at "application passwords" was not sanitized or escaped before being added to DOM The users clientID at "application passwords" was not sanitized or escaped before being added to DOM. Malicious script code can be executed within the victims context. This can lead to session hijacking or triggering unwanted actions via the web interface and API. To exploit this an attacker would require temporary access to the users account or lure

CVE-2016-6846 [MEDIUM] CWE-79 CVE-2016-6846: Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite backend before 7.6.2-rev59, 7 Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite backend before 7.6.2-rev59, 7.8.0 before 7.8.0-rev38, 7.8.2 before 7.8.2-rev8; AppSuite frontend before 7.6.2-rev47, 7.8.0 before 7.8.0-rev30, and 7.8.2 before 7.8.2-rev8; Office Web before 7.6.2-rev16, 7.8.0 before 7.8.0-rev10, and 7.8.2 before 7.8.2-rev5; and Documentconverter-API