Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kaltura kaltura server vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-14143
The getUserzoneCookie function in Kaltura prior to 13.2.0 uses a hardcoded cookie secret to validate cookie signatures, which allows remote malicious users to bypass an intended protection mechanism and consequently conduct PHP object injection attacks and execute arbitrary PHP c...
Kaltura Kaltura Server
2 EDB exploits
7.2
CVSSv3
CVE-2017-14141
The wiki_decode Developer System Helper function in the admin panel in Kaltura prior to 13.2.0 allows remote malicious users to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object.
Kaltura Kaltura Server
6.1
CVSSv3
CVE-2017-14142
Multiple cross-site scripting (XSS) vulnerabilities in Kaltura prior to 13.2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) partnerId or (2) playerVersion parameter to server/admin_console/web/tools/bigRedButton.php; the (3) partnerId, (4) playe...
Kaltura Kaltura Server
6.1
CVSSv3
CVE-2017-6391
An issue exists in Kaltura server Lynx-12.11.0. The vulnerability exists due to insufficient filtration of user-supplied data passed to the "admin_console/web/tools/SimpleJWPlayer.php" URL, the "admin_console/web/tools/AkamaiBroadcaster.php" URL, the "adm...
Kaltura Kaltura Server
6.1
CVSSv3
CVE-2017-6392
An issue exists in Kaltura server Lynx-12.11.0. The vulnerability exists due to insufficient filtration of user-supplied data passed to the "server-Lynx-12.11.0/admin_console/web/tools/XmlJWPlayer.php" URL. An attacker could execute arbitrary HTML and script code in a b...
Kaltura Kaltura Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started