Vulnerabilities > Open Xchange > APP Suite > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-12-01 | CVE-2014-5237 | Cross-Site Request Forgery vulnerability in Open-Xchange APP Suite 7.4.2/7.6.0 Server-side request forgery (SSRF) vulnerability in the documentconverter component in Open-Xchange (OX) AppSuite before 7.4.2-rev10 and 7.6.x before 7.6.0-rev10 allows remote attackers to trigger requests to arbitrary servers and embed arbitrary images via a URL in an embedded image in a Text document, which is not properly handled by the image preview. network open-xchange | 4.3 |