Vulnerabilities (CVE)

Filtered by vendor Scalix Subscribe
Filtered by product Web Access
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-9352 1 Scalix 1 Web Access 2024-02-28 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the mail administration login panel in Scalix Web Access 11.4.6.12377 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2014-9360 1 Scalix 1 Web Access 2024-02-28 6.4 MEDIUM N/A
XML external entity (XXE) vulnerability in Scalix Web Access 11.4.6.12377 and 12.2.0.14697 allows remote attackers to read arbitrary files and trigger requests to intranet servers via a crafted request.