Filter

Versions

3.1.0
13
3.2.0
11
3.2.1
11
3.1.1
10
3.1.3
10
2.0
9
3.0.0
9
3.1.2
9
3.1.4
9
3.1.5
9
1.0.0
8
2.1
8
2.1.1
8
2.2.0
8
3.0.1
8
3.0.2
8
3.0.3
8
3.0.4
8
3.0.5
8
3.0.6
8
3.0.7
8
2.0.0
2
4.0.0
2
4.0.1
1
5.0.0
1

Apache OpenMeetingsApache OpenMeetings: insufficient check of invitation hash

medium
5.3
First published (updated )
CVE-2023-28936

Apache OpenMeetingsApache OpenMeetings: allows bypass authentication

high
8.1
First published (updated )
CVE-2023-29032

Apache OpenMeetingsApache OpenMeetings: allows null-byte Injection

high
7.2
First published (updated )
CVE-2023-29246

Apache OpenMeetingsApache OpenMeetings: allows user impersonation

critical
9.8
First published (updated )
CVE-2023-28326

Apache OpenMeetingsApache OpenMeetings: bandwidth can be overloaded with public web service

high
7.5
First published (updated )
CVE-2021-27576

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache OpenMeetingsAttackers can use public NetTest web service of Apache OpenMeetings 4.0.0-5.0.0 to organize denial o…

high
7.5
First published (updated )
CVE-2020-13951

Apache OpenMeetingsIn Apache OpenMeetings 3.0.0 - 4.0.1, CRUD operations on privileged users are not password protected…

medium
6.5
First published (updated )
CVE-2018-1286

Apache OpenMeetingsApache OpenMeetings before 3.1.2 is vulnerable to Remote Code Execution via RMI deserialization atta…

critical
9.8
First published (updated )
CVE-2016-8736

Apache OpenMeetingsSQL Injection

high
8.8
First published (updated )
CVE-2017-7681

Apache OpenMeetingsWeak Encryption

critical
9.8
First published (updated )
CVE-2017-7673

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache OpenMeetingsXSS

medium
6.1
First published (updated )
CVE-2017-7663

Apache OpenMeetingsApache OpenMeetings 1.0.0 updates user password in insecure manner.

high
7.5
First published (updated )
CVE-2017-7688

Apache OpenMeetingsCSRF, XSS

high
8.8
First published (updated )
CVE-2017-7666

Apache OpenMeetingsXEE

critical
10
First published (updated )
CVE-2017-7664

Apache OpenMeetingsInfoleak

high
7.5
First published (updated )
CVE-2017-7683

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache OpenMeetingsApache OpenMeetings 3.2.0 is vulnerable to parameter manipulation attacks, as a result attacker has …

high
8.2
First published (updated )
CVE-2017-7682

Apache OpenMeetingsApache OpenMeetings 1.0.0 has an overly permissive crossdomain.xml file. This allows for flash conte…

high
7.5
First published (updated )
CVE-2017-7680

Apache OpenMeetingsApache OpenMeetings 1.0.0 responds to the following insecure HTTP methods: PUT, DELETE, HEAD, and PA…

medium
5.3
First published (updated )
CVE-2017-7685

Apache OpenMeetingsApache OpenMeetings 1.0.0 doesn't check contents of files being uploaded. An attacker can cause a de…

high
7.5
First published (updated )
CVE-2017-7684

Apache OpenMeetingsXSS

medium
6.1
First published (updated )
CVE-2016-3089

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache OpenMeetingsPath Traversal

medium
6.5
First published (updated )
CVE-2016-0784

Apache OpenMeetingsInfoleak

high
7.5
First published (updated )
CVE-2016-2164

Apache OpenMeetingsXSS

medium
6.1
First published (updated )
CVE-2016-2163

Apache OpenMeetingsInfoleak

high
7.5
First published (updated )
CVE-2016-0783

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203