Intermesh Group-Office
Moderate fix2 remedies
cpe:2.3:a:intermesh:group-office:*:*:*:*:*:*:*
Moderate fix2 remedies
- <= 6.8.120
- <= 25.0.23
Group-Office Stored Blind Cross-Site Scripting Vulnerability in User Profile Name Field
Vulnerability
Patched
A stored and blind cross-site scripting vulnerability has been identified in Group-Office versions through 6.8.120 and 25.0.23. The issue resides in the Name Field of the user profile, where an attacker can inject a JavaScript payload. This payload is executed when the malicious user is added to another user's Synchronization Address books. The vulnerability has been patched in Group-Office versions 6.8.123 and 25.0.27.
Impact
Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user viewing the profile. This could lead to unauthorized fetch requests, data theft, session hijacking, or account manipulation.
Reproduction
To reproduce this vulnerability, log in as an admin and create two users. Log in as the first user and inject an XSS payload into the Name field. Then, log in as the second user and add the first user to the address book, which will trigger the execution of the injected script.
Remediation
Users are advised to update to Group-Office versions 6.8.123 or 25.0.27.
Added: Jun 16, 2025, 11:19 PM
Updated: Jun 17, 2025, 1:22 AM
Vulnerability Rating
Custom Algorithm
spread
3.1impact
5.4exploitability
7.7remediation
7.7relevance
0.2threat
6.4urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.