CVE-2015-2918
The CVE concerns the OrientDB Studio web management interface in the OrientDB Server Community Edition. Affected versions are before 2.0.15 and before 2.1.1 (2.1.x line). The root cause is that Studio does not properly restrict use of FRAME elements, allowing remote attackers to perform clickjack...