Vulnerabilities > Scalix
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-12-10 | CVE-2014-9360 | Remote Security vulnerability in Scalix web Access 11.4.6.12377/12.2.0.14697 XML external entity (XXE) vulnerability in Scalix Web Access 11.4.6.12377 and 12.2.0.14697 allows remote attackers to read arbitrary files and trigger requests to intranet servers via a crafted request. | 6.4 |
2014-12-09 | CVE-2014-9352 | Cross-Site Scripting vulnerability in Scalix web Access 11.4.6.12377 Cross-site scripting (XSS) vulnerability in the mail administration login panel in Scalix Web Access 11.4.6.12377 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |