CVE-2022-29852 Information

Description

OX App Suite through 8.2 allows XSS because BMFreehand10 and image/x-freehand are not blocked.

Reference

https://open-xchange.com https://seclists.org/fulldisclosure/2022/Sep/0