CVE-2026-25058

Vexa is an open-source, self-hostable meeting bot API and meeting transcription API. Prior to 0.10.0-260419-1910, the Vexa transcription-collector service exposes an internal endpoint GET /internal/transcripts/meetingid that returns transcript data for any meeting without any authentication or...

CVE-2026-1332

MeetingHub developed by HAMASTAR Technology has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access specific API functions and obtain meeting-related information...

CVE-2026-1332

MeetingHub developed by HAMASTAR Technology has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access specific API functions and obtain meeting-related information...

CVE-2026-1332 HAMASTAR Technology｜MeetingHub - Missing Authentication

MeetingHub developed by HAMASTAR Technology has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access specific API functions and obtain meeting-related information...

CVE-2026-1332

MeetingHub developed by HAMASTAR Technology has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access specific API functions and obtain meeting-related information...

PT-2026-3925

MeetingHub developed by HAMASTAR Technology has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access specific API functions and obtain meeting-related information...

EUVD-2020-20116

Malware in sbrugna...

EUVD-2022-33203

Malicious code in bioql PyPI...

BIT-SUITECRM-2025-54786 SuiteCRM: Legacy iCal service allows unauthenticated access to meeting data

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. In versions 7.14.6 and 8.8.0, the broken authentication in the legacy iCal service allows unauthenticated access to meeting data. An unauthenticated actor can view any user's meeting calendar...

CVE-2025-54786

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. In versions 7.14.6 and 8.8.0, the broken authentication in the legacy iCal service allows unauthenticated access to meeting data. An unauthenticated actor can view any user's meeting calendar...

SuiteCRM 访问控制错误漏洞

SuiteCRM is a customer relationship management system from the SuiteCRM team. An access control error vulnerability exists in SuiteCRM versions 7.14.6 and 8.8.0 that stems from a legacy iCal service authentication flaw that could lead to unauthorized access to meeting data...

CVE-2025-54786 SuiteCRM: Legacy iCal service allows unauthenticated access to meeting data

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. In versions 7.14.6 and 8.8.0, the broken authentication in the legacy iCal service allows unauthenticated access to meeting data. An unauthenticated actor can view any user's meeting calendar...

CVE-2025-54786 SuiteCRM: Legacy iCal service allows unauthenticated access to meeting data

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. In versions 7.14.6 and 8.8.0, the broken authentication in the legacy iCal service allows unauthenticated access to meeting data. An unauthenticated actor can view any user's meeting calendar...

CVE-2025-54786 SuiteCRM: Legacy iCal service allows unauthenticated access to meeting data

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. In versions 7.14.6 and 8.8.0, the broken authentication in the legacy iCal service allows unauthenticated access to meeting data. An unauthenticated actor can view any user's meeting calendar...

CVE-2025-54786

SuiteCRM is affected by a broken authentication issue in the legacy iCal service that allows unauthenticated access to meeting data in versions 7.14.6 and 8.8.0. An unauthenticated actor can view any user’s meeting (calendar event) data, and related functionality enables user enumeration. The vul...

PT-2025-32230 · Suitecrm · Suitecrm

Name of the Vulnerable Software and Affected Versions: SuiteCRM versions 7.14.6 and 8.8.0 Description: SuiteCRM, an open-source Customer Relationship Management CRM software application, suffers from broken authentication within the legacy iCal service. This allows unauthenticated access to meeti...

Vulnerability fixed in Zoom

A vulnerability has been fixed in Zoom. The vulnerability allows a local malicious party to gain access to sensitive data, such as meeting data and chat messages sent during meetings. This is caused by a combination of insufficient cleaning of the data after the meeting is closed and the use of a...

Cisco Webex meeting客户端软件日志机制 信息泄露漏洞

Cisco Webex Meetings is a video conferencing solution from Cisco. An information disclosure vulnerability exists in the logging mechanism of the Cisco Webex meeting client software, which can be exploited by an authenticated, local attacker to gain access to sensitive information. The vulnerabili...

vFairs 跨站脚本漏洞

vFairs is a virtual event platform by vFairs Singapore. It hosts exciting online conferences, trade shows, job fairs and more. A security vulnerability exists in vFairs version 3.3 that allows any user logged in to a vFairs virtual meeting to modify any other user's information, which could lead ...

PT-2021-5238 · Pulse Secure · Pulse Connect Secure

Name of the Vulnerable Software and Affected Versions: Pulse Connect Secure versions prior to 9.1R11.4 Description: A buffer overflow issue exists, allowing a remote authenticated attacker to execute arbitrary code as the root user via maliciously crafted meeting room data. This can be exploited ...