Design/Logic Flaw

2022-10-2519:15:00

PRIOn knowledge base

www.prio-n.com

ox app suite

logic flaw

xss

attachment

ox drive

parameter

nvd

0.001 Low

EPSS

Percentile

32.8%

OX App Suite through 8.2 allows XSS via an attachment or OX Drive content when a client uses the len or off parameter.

CPENameOperatorVersion
ox_app_suitele8.2

CPE	Name	Operator	Version
	ox_app_suite	le	8.2

References

packetstormsecurity.com/files/168242/OX-App-Suite-Cross-Site-Scripting-Command-Injection.html

0.001 Low

EPSS

Percentile

32.8%

Related for PRION:CVE-2022-31468