Vulnerabilities > Open Xchange > OX Guard
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-02 | CVE-2023-26456 | Cross-site Scripting vulnerability in Open-Xchange OX Guard Users were able to set an arbitrary "product name" for OX Guard. | 5.4 |
| 2021-04-30 | CVE-2020-28944 | Resource Exhaustion vulnerability in Open-Xchange OX Guard OX Guard 2.10.4 and earlier allows a Denial of Service via a WKS server that responds slowly or with a large amount of data. | 7.5 |
| 2020-06-15 | CVE-2020-9427 | Server-Side Request Forgery (SSRF) vulnerability in Open-Xchange OX Guard 2.10.3 OX Guard 2.10.3 and earlier allows SSRF. | 5.0 |
| 2020-06-15 | CVE-2020-9426 | Cross-site Scripting vulnerability in Open-Xchange OX Guard 2.10.3 OX Guard 2.10.3 and earlier allows XSS. | 6.1 |
| 2019-07-03 | CVE-2018-10986 | Cross-Site Request Forgery (CSRF) vulnerability in Open-Xchange OX Guard 2.8.0 OX Guard 2.8.0 has CSRF. | 8.8 |
| 2016-12-15 | CVE-2016-6854 | Cross-site Scripting vulnerability in Open-Xchange OX Guard 2.4.2 An issue was discovered in Open-Xchange OX Guard before 2.4.2-rev5. | 6.1 |
| 2016-12-15 | CVE-2016-6853 | Cross-site Scripting vulnerability in Open-Xchange OX Guard 2.4.2 An issue was discovered in Open-Xchange OX Guard before 2.4.2-rev5. | 6.1 |
| 2016-12-15 | CVE-2016-6851 | Cross-site Scripting vulnerability in Open-Xchange OX Guard 2.4.2 An issue was discovered in Open-Xchange OX Guard before 2.4.2-rev5. | 6.1 |
| 2016-12-15 | CVE-2016-4028 | Credentials Management vulnerability in Open-Xchange OX Guard 2.4.0 An issue was discovered in Open-Xchange OX Guard before 2.4.0-rev8. | 7.5 |
| 2016-12-15 | CVE-2015-8542 | Key Management Errors vulnerability in Open-Xchange OX Guard 2.0.0/2.2.0 An issue was discovered in Open-Xchange Guard before 2.2.0-rev8. | 8.8 |