Openmeetings Security Vulnerabilities and Issues — Openmeetings CVE List

Lucene search

ApacheOpenmeetings

4 matches found

CVE•added 2017/07/17 1:18 p.m.•56 views

CVE-2017-7682

Apache OpenMeetings 3.2.0 is vulnerable to parameter manipulation attacks, as a result attacker has access to restricted areas.

8.2CVSS8.1AI score0.00735EPSS

CVE•added 2017/07/17 1:18 p.m.•55 views

CVE-2017-7666

Apache OpenMeetings 1.0.0 is vulnerable to Cross-Site Request Forgery (CSRF) attacks, XSS attacks, click-jacking, and MIME based attacks.

8.8CVSS8.5AI score0.00167EPSS

CVE•added 2017/07/17 1:18 p.m.•50 views

CVE-2017-7681

Apache OpenMeetings 1.0.0 is vulnerable to SQL injection. This allows authenticated users to modify the structure of the existing query and leak the structure of other queries being made by the application in the back-end.

8.8CVSS8.8AI score0.00097EPSS

CVE•added 2023/05/12 8:15 a.m.•35 views

CVE-2023-29032

An attacker that has gained access to certain private information can use this to act as other user. Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 3.1.3 before 7.1.0

8.1CVSS7.9AI score0.00123EPSS