AI Score
Confidence
High
EPSS
Percentile
61.5%
The Studio component in OrientDB Server Community Edition before 2.0.15 and 2.1.x before 2.1.1 does not properly restrict use of FRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.
github.com/advisories/GHSA-g4gg-9f62-jfph
nvd.nist.gov/vuln/detail/CVE-2015-2918
www.kb.cert.org/vuls/id/845332