Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
CRLF injection vulnerability in the redirect servlet in Open-Xchange AppSuite and Server before 6.22.0 rev15, 6.22.1 before rev17, 7.0.1 before rev6, and 7.0.2 before rev7 allows remote attackers to inject arbitrary HTTP headers and conduct open redirect attacks by leveraging improper sanitization of whitespace characters.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Open-Xchange AppSuite和Server CRLF注入漏洞
Vulnerability Description
Open-Xchange AppSuite(OX AppSuite)和Open-Xchange Server都是美国Open-Xchange公司的产品。OX AppSuite是一套Web云桌面环境。Open-Xchange Server是一个主要用于开发协同软件的半开源项目。 Open-Xchange AppSuite和Server 6.22.0-rev1至7.0.2-rev6版本中的重定向的servlet中存在CRLF注入漏洞,该漏洞源于程序没有正确过滤空白字符。远程攻击者可利用该漏洞注入任意HTTP头
CVSS Information
N/A
Vulnerability Type
N/A