Vulnerabilities (CVE)

Filtered by vendor Apache Subscribe
Filtered by product Openmeetings
Total 24 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-7682 1 Apache 1 Openmeetings 2024-02-28 6.4 MEDIUM 8.2 HIGH
Apache OpenMeetings 3.2.0 is vulnerable to parameter manipulation attacks, as a result attacker has access to restricted areas.
CVE-2017-7685 1 Apache 1 Openmeetings 2024-02-28 5.0 MEDIUM 5.3 MEDIUM
Apache OpenMeetings 1.0.0 responds to the following insecure HTTP methods: PUT, DELETE, HEAD, and PATCH.
CVE-2017-7683 1 Apache 1 Openmeetings 2024-02-28 5.0 MEDIUM 7.5 HIGH
Apache OpenMeetings 1.0.0 displays Tomcat version and detailed error stack trace, which is not secure.
CVE-2017-7680 1 Apache 1 Openmeetings 2024-02-28 5.0 MEDIUM 7.5 HIGH
Apache OpenMeetings 1.0.0 has an overly permissive crossdomain.xml file. This allows for flash content to be loaded from untrusted domains.