Описание
Apache OpenMeetings vulnerable to SQL injection
Apache OpenMeetings 1.0.0 is vulnerable to SQL injection. This allows authenticated users to modify the structure of the existing query and leak the structure of other queries being made by the application in the back-end. The issue is fixed in version 3.3.0.
Пакеты
Наименование
org.apache.openmeetings:openmeetings-parent
maven
Затронутые версииВерсия исправления
>= 1.0.0, < 3.3.0
3.3.0
Связанные уязвимости
CVSS3: 8.8
nvd
больше 8 лет назад
Apache OpenMeetings 1.0.0 is vulnerable to SQL injection. This allows authenticated users to modify the structure of the existing query and leak the structure of other queries being made by the application in the back-end.