CVE-2021-23929
OX App Suite through 7.10.4 allows XSS via a crafted Content-Disposition header in an uploaded HTML document to an ajax/share/<share-token>?delivery=view URI.
Cross-site Scripting
Vendor | Product | Version |
---|---|---|
open-xchange | open-xchange_appsuite | 𝑥 ≤ 7.10.3 |
Common Weakness Enumeration