CVE-2026-34020 in OpenMeetingsالمعلومات

الملخص

بحسب MITRE • 09/04/2026

Use of GET Request Method With Sensitive Query Strings vulnerability in Apache OpenMeetings.

The REST login endpoint uses HTTP GET method with username and password passed as query parameters. Please check references regarding possible impact

This issue affects Apache OpenMeetings: from 3.1.3 before 9.0.0.

Users are recommended to upgrade to version 9.0.0, which fixes the issue.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

إفشاء

09/04/2026

الاعتدال

تمت الموافقة

إدخال

VDB-356599

CPE

جاهز

CWE

CWE-200 (غير مؤكد)

CVSS

3.7 (VulDB)

EPSS

0.00072

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-34020
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-34020
CVE Details	https://www.cvedetails.com/cve/CVE-2026-34020/

التالي ▸نظرة عامة ◂ السابق

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!