Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rooms vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2021-1500
A vulnerability in the web-based management interface of Cisco Webex Video Mesh could allow an unauthenticated, remote malicious user to redirect a user to a malicious web page. This vulnerability is due to improper input validation of the URL parameters in an HTTP request. An at...
Cisco Collaboration Meeting Rooms 2.0
Cisco Webex Video Mesh
6.1
CVSSv3
CVE-2021-40115
A vulnerability in Cisco Webex Video Mesh could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management ...
Cisco Collaboration Meeting Rooms 2.0
Cisco Webex Video Mesh
7.5
CVSSv3
CVE-2018-12423
In Synapse prior to 0.31.2, unauthorised users can hijack rooms when there is no m.room.power_levels event in force.
Matrix Synapse
NA
CVE-1999-0897
iChat ROOMS Webserver allows remote malicious users to read arbitrary files via a .. (dot dot) attack.
Apple Ichat Server 3.0
4.3
CVSSv3
CVE-2024-4314
The Hostel plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.5.3. This is due to missing or incorrect nonce validation when managing rooms. This makes it possible for unauthenticated malicious users to create and delete roo...
7.2
CVSSv3
CVE-2022-32345
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/rooms/manage_room.php?id=.
Hospital\\'s Patient Records Management System Project Hospital\\'s Patient Records Management System 1.0
7.2
CVSSv3
CVE-2022-32346
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/rooms/view_room.php?id=.
Hospital\\'s Patient Records Management System Project Hospital\\'s Patient Records Management System 1.0
7.5
CVSSv3
CVE-2020-10573
An issue exists in Janus up to and including 0.9.1. janus_audiobridge.c has a double mutex unlock when listing private rooms in AudioBridge.
Meetecho Janus
3.1
CVSSv3
CVE-2021-39164
Matrix is an ecosystem for open federated Instant Messaging and Voice over IP. In versions 1.41.0 and prior, unauthorised users can access the membership (list of members, with their display names) of a room if they know the ID of the room. The vulnerability is limited to rooms w...
Matrix Synapse
Fedoraproject Fedora 34
Fedoraproject Fedora 35
4.3
CVSSv3
CVE-2016-2966
IBM Sametime 8.5.1 and 9.0 could allow an authenticated user to enumerate meeting rooms by guessing the meeting room id. IBM X-Force ID: 113847.
Ibm Sametime 8.5.1.0
Ibm Sametime 9.0.0.1
Ibm Sametime 9.0.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
Ibm Sametime 8.5.1.1
Ibm Sametime 9.0.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »