Lucene search

K

MitreCVELIST:CVE-2013-6997

HistoryJan 09, 2014 - 12:00 a.m.

CVE-2013-6997

2014-01-0900:00:00

mitre

www.cve.org

5

AI Score

5.8

Confidence

High

EPSS

0.003

Percentile

68.2%

Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange (OX) AppSuite 7.4.0 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) an HTML email with crafted CSS code containing wildcards or (2) office documents containing “crafted hyperlinks with script URL handlers.”

References

software.open-xchange.com/OX6/doc/Release_Notes_for_Public_Patch_Release_1766_7.4.0_Rev21_2013_12_13.pdf

www.osvdb.org/101714

www.osvdb.org/101715

www.securityfocus.com/archive/1/530681/100/0/threaded

www.securityfocus.com/bid/64676

www.securitytracker.com/id/1029554

exchange.xforce.ibmcloud.com/vulnerabilities/90113

AI Score

5.8

Confidence

High

EPSS

0.003

Percentile

68.2%

Related for CVELIST:CVE-2013-6997

nvd1 securityvulns2 cve1 prion1