164 matches found
Moodle Jitsi Meet 2.7-2.8.3 - Cross-Site Scripting
Moodle Jitsi Meet 2.7 through 2.8.3 plugin contains a cross-site scripting vulnerability via the "sessionpriv.php" module. This allows attackers to craft a malicious URL, which when clicked on by users, can inject JavaScript code to be run by the application. id: CVE-2021-26812 info: name: Moodle...
CVE-2021-33506
jitsi-meet-prosody in Jitsi Meet before 2.0.5963-1 does not ensure that restrictroomcreation is set by default. This can allow an attacker to circumvent conference moderation...
CVE-2025-64754
Jitsi Meet is an open source video conferencing application. A vulnerability present in versions prior to 2.0.10532 allows attackers to hijack the OAuth authentication window for Microsoft accounts. This is fixed in version 2.0.10532. No known workarounds are available...
CVE-2025-64754
Jitsi Meet is an open source video conferencing application. A vulnerability present in versions prior to 2.0.10532 allows attackers to hijack the OAuth authentication window for Microsoft accounts. This is fixed in version 2.0.10532. No known workarounds are available...
EUVD-2025-177182
Jitsi Meet is an open source video conferencing application. A vulnerability present in versions prior to 2.0.10532 allows attackers to hijack the OAuth authentication window for Microsoft accounts. This is fixed in version 2.0.10532. No known workarounds are available...
CVE-2025-64754 Jitsi Meet has DOM Redirect on Microsoft OAuth Flow
Jitsi Meet is an open source video conferencing application. A vulnerability present in versions prior to 2.0.10532 allows attackers to hijack the OAuth authentication window for Microsoft accounts. This is fixed in version 2.0.10532. No known workarounds are available...
CVE-2025-64754 Jitsi Meet has DOM Redirect on Microsoft OAuth Flow
Jitsi Meet is an open source video conferencing application. A vulnerability present in versions prior to 2.0.10532 allows attackers to hijack the OAuth authentication window for Microsoft accounts. This is fixed in version 2.0.10532. No known workarounds are available...
CVE-2025-64754 Jitsi Meet has DOM Redirect on Microsoft OAuth Flow
Jitsi Meet is an open source video conferencing application. A vulnerability present in versions prior to 2.0.10532 allows attackers to hijack the OAuth authentication window for Microsoft accounts. This is fixed in version 2.0.10532. No known workarounds are available...
CVE-2025-64754
Jitsi Meet (open‑source video conferencing) contains a DOM/OAuth flow vulnerability affecting versions prior to 2.0.10532, where an attacker could hijack the Microsoft account OAuth authentication window. The issue is fixed in 2.0.10532. No workarounds are documented. Remediation: upgrade to 2.0....
CVE-2025-64754
Jitsi Meet is an open source video conferencing application. A vulnerability present in versions prior to 2.0.10532 allows attackers to hijack the OAuth authentication window for Microsoft accounts. This is fixed in version 2.0.10532. No known workarounds are available...
Jitsi Meet 输入验证错误漏洞
Jitsi Meet is a set of open source projects from Jitsi Open Source. Enabling users to use and deploy a video conferencing platform with state-of-the-art video quality and features. An input validation error vulnerability exists in versions prior to Jitsi Meet 2.0.10532 that stems from a possible...
PT-2025-46918
Name of the Vulnerable Software and Affected Versions Jitsi Meet versions prior to 2.0.10532 Description Jitsi Meet is a video conferencing application. A flaw exists that allows attackers to hijack the OAuth authentication window for Microsoft accounts. This issue does not have any known...
EUVD-2020-4218
Malware in sbrugna...
EUVD-2020-17718
Malware in sbrugna...
EUVD-2021-20205
Malware in sbrugna...
EUVD-2021-25586
Malware in sbrugna...
EUVD-2021-25592
Malware in sbrugna...
EUVD-2017-14702
Malware in sbrugna...
EUVD-2024-31267
Malicious code in bioql PyPI...
EUVD-2024-28358
Malicious code in bioql PyPI...