CVE-2026-22605 OpenProject is Vulnerable to Insecure Direct Object Reference in Meetings

OpenProject is an open-source, web-based project management software. OpenProject versions prior to version 16.6.3, allowed users with the View Meetings permission on any project, to access meeting details of meetings that belonged to projects, the user does not have access to. This issue has bee...

CVE-2026-22605 OpenProject is Vulnerable to Insecure Direct Object Reference in Meetings

OpenProject is an open-source, web-based project management software. OpenProject versions prior to version 16.6.3, allowed users with the View Meetings permission on any project, to access meeting details of meetings that belonged to projects, the user does not have access to. This issue has bee...

CVE-2026-22605 OpenProject is Vulnerable to Insecure Direct Object Reference in Meetings

OpenProject is an open-source, web-based project management software. OpenProject versions prior to version 16.6.3, allowed users with the View Meetings permission on any project, to access meeting details of meetings that belonged to projects, the user does not have access to. This issue has bee...

CVE-2025-11760

The eRoom – Webinar & Meeting Plugin for Zoom, Google Meet, Microsoft Teams plugin for WordPress is vulnerable to exposure of sensitive information in all versions up to, and including, 1.5.6. This is due to the plugin exposing Zoom SDK secret keys in client-side JavaScript within the meeting vie...

EUVD-2020-20111

Malware in sbrugna...

EUVD-2016-0393

Malware in sbrugna...

PT-2025-32189 · Cisco · Cisco Webex Meetings

Name of the Vulnerable Software and Affected Versions: Cisco Webex Meetings affected versions not specified Description: A vulnerability in the meeting-join functionality of Cisco Webex Meetings could allow an unauthenticated, network-proximate attacker to complete a meeting-join process in place...

Cisco Webex Meetings Security Vulnerability

Cisco Webex Meetings is a video conferencing solution from Cisco. A security vulnerability exists in Cisco Webex Meetings and Cisco Webex Meetings Server, which stems from a lack of protection against brute-force breaking of host keys. An attacker could exploit the vulnerability to join Webex...

Code injection

An issue was discovered in BigBlueButton through 2.2.29. A brute-force attack may occur because an unlimited number of codes can be entered for a meeting that is protected by an access code...

CVE-2020-3419 Cisco Webex Meetings and Cisco Webex Meetings Server Ghost Join Vulnerability

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to join a Webex session without appearing on the participant list. This vulnerability is due to improper handling of authentication tokens by a vulnerable Webex site. An attacke...

Cisco Webex Meetings Security Vulnerability

Cisco Webex Meetings is a videoconferencing solution from Cisco. A security vulnerability exists in Cisco Webex Meetings and Cisco Webex Meetings Server, which stems from the mishandling of authentication tokens on the Webex website. An attacker could exploit the vulnerability to join a Webex...

Design/Logic Flaw

A vulnerability in the ability for guest users to join meetings via a hyperlink with Cisco Meeting Server could allow an authenticated, remote attacker to enter a meeting with a hyperlink URL, even though access should be denied. The vulnerability is due to the incorrect implementation of the...