Open-Xchange Security Advisory 2020-10-13

Posted by Open-Xchange GmbH via Fulldisclosure on Oct 16

Dear subscribers,

we’re sharing our latest advisory with you and like to thank everyone who contributed in finding and solving those
vulnerabilities. Feel free to join our bug bounty programs for OX App Suite, Dovecot and PowerDNS at HackerOne.

Yours sincerely,
Martin Heiland, Open-Xchange GmbH

Product: OX App Suite / OX Documents
Vendor: OX Software GmbH

Vulnerability type: Cross-Site Scripting (CWE-80)
Vulnerable version: 7.10.2,…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Patreon

Original Source