Lucene search
MitreCVELIST:CVE-2013-6241HistoryDec 27, 2014 - 6:00 p.m.
CVE-2013-6241
2014-12-2718:00:00
mitre
www.cve.org
4
The Birthday widget in the backend in Open-Xchange (OX) AppSuite 7.2.x before 7.2.2-rev25 and 7.4.x before 7.4.0-rev14, in certain user-id sharing scenarios, does not properly construct a SQL statement for next-year birthdays, which allows remote authenticated users to obtain sensitive birthday, displayname, firstname, and surname information via a birthdays action to api/contacts, aka bug 29315.
Related
nvd
nvd
CVE-2013-6241
2014-12-27 18:59:05
cve
cve
CVE-2013-6241
2014-12-27 18:59:05
prion
prion
Open redirect
2014-12-27 18:59:00
securityvulns
securityvulns
Open-Xchange Security Advisory 2013-11-06
2013-11-18 00:00:00
openvas
openvas
Open-Xchange (OX) App Suite Multiple Vulnerabilities -05 (Nov 2015)
2015-11-02 00:00:00