Vulnerabilities > Open Xchange > OX Guard > 2.8.0

DATE CVE VULNERABILITY TITLE RISK
2023-11-02 CVE-2023-26456 Cross-site Scripting vulnerability in Open-Xchange OX Guard
Users were able to set an arbitrary "product name" for OX Guard.
network
low complexity
open-xchange CWE-79
5.4
5.4
2021-04-30 CVE-2020-28944 Resource Exhaustion vulnerability in Open-Xchange OX Guard
OX Guard 2.10.4 and earlier allows a Denial of Service via a WKS server that responds slowly or with a large amount of data.
network
low complexity
open-xchange CWE-400
7.5
7.5
2019-07-03 CVE-2018-10986 Cross-Site Request Forgery (CSRF) vulnerability in Open-Xchange OX Guard 2.8.0
OX Guard 2.8.0 has CSRF.
network
low complexity
open-xchange CWE-352
8.8
8.8