Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormMatthew DaleyPACKETSTORM:138313
HistoryAug 12, 2016 - 12:00 a.m.

Apache OpenMeetings 3.1.0 Cross Site Scripting

2016-08-1200:00:00
Matthew Daley
packetstormsecurity.com
18

0.002 Low

EPSS

Percentile

52.5%

JSON
`Severity: Moderate  
  
Vendor: The Apache Software Foundation  
  
Versions Affected: Apache OpenMeetings 3.1.0  
  
Description: The value of the URL's "swf" query parameter is  
interpolated into the JavaScript tag without being escaped, leading to  
the reflected XSS.  
  
All users are recommended to upgrade to Apache OpenMeetings 3.1.2  
  
Credit: This issue was identified by Matthew Daley  
  
  
Apache OpenMeetings Team  
`

Related

prion 1
osv 1
cvelist 1
github 1
cve 1
nvd 1
openvas 1
prion
prion
Cross site scripting
2016-08-19 21:59:00
osv
osv
Apache OpenMeetings Cross-site Scripting vulnerability
2022-05-14 02:46:33
cvelist
cvelist
CVE-2016-3089
2016-08-19 21:00:00
github
github
Apache OpenMeetings Cross-site Scripting vulnerability
2022-05-14 02:46:33
cve
cve
CVE-2016-3089
2016-08-19 21:59:04
nvd
nvd
CVE-2016-3089
2016-08-19 21:59:04
openvas
openvas
Apache OpenMeetings < 3.1.2 Multiple Vulnerabilities - Active Check
2016-08-23 00:00:00

0.002 Low

EPSS

Percentile

52.5%

JSON
Related for PACKETSTORM:138313
prion1osv1cvelist1github1cve1nvd1openvas1