Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
JitsiMeet*

4 matches found

CVE
CVEadded 2020/04/17 4:15 p.m.117 views

CVE-2020-11878

The Jitsi Meet (aka docker-jitsi-meet) stack on Docker before stable-4384-1 uses default passwords (such as passw0rd) for system accounts.

9.8CVSS9.5AI score0.00363EPSS
CVE
CVEadded 2024/10/29 10:15 p.m.58 views

CVE-2024-44080

In Jitsi Meet before 2.0.9779, the functionality to share an image using giphy was implemented in an insecure way, resulting in clients loading GIFs from any arbitrary URL if a message from another participant contains a URL encoded in the expected format.

7.5CVSS7.2AI score0.00128EPSS
CVE
CVEadded 2024/05/02 4:15 p.m.57 views

CVE-2024-33530

In Jitsi Meet before 9391, a logic flaw in password-protected Jitsi meetings (that make use of a lobby) leads to the disclosure of the meeting password when a user is invited to a call after waiting in the lobby.

7.5CVSS6.8AI score0.0009EPSS
CVE
CVEadded 2021/04/14 2:15 p.m.37 views

CVE-2021-26812

Cross Site Scripting (XSS) in the Jitsi Meet 2.7 through 2.8.3 plugin for Moodle via the "sessionpriv.php" module. This allows attackers to craft a malicious URL, which when clicked on by users, can inject javascript code to be run by the application.

6.1CVSS6AI score0.19091EPSS