Filtered by vendor Jitsi
Subscriptions
Filtered by product Meet
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-26812 | 1 Jitsi | 1 Meet | 2024-11-21 | 6.1 Medium |
| Cross Site Scripting (XSS) in the Jitsi Meet 2.7 through 2.8.3 plugin for Moodle via the "sessionpriv.php" module. This allows attackers to craft a malicious URL, which when clicked on by users, can inject javascript code to be run by the application. | ||||
| CVE-2020-11878 | 1 Jitsi | 1 Meet | 2024-11-21 | 9.8 Critical |
| The Jitsi Meet (aka docker-jitsi-meet) stack on Docker before stable-4384-1 uses default passwords (such as passw0rd) for system accounts. | ||||
| CVE-2024-44080 | 1 Jitsi | 1 Meet | 2024-11-01 | 7.5 High |
| In Jitsi Meet before 2.0.9779, the functionality to share an image using giphy was implemented in an insecure way, resulting in clients loading GIFs from any arbitrary URL if a message from another participant contains a URL encoded in the expected format. | ||||
Page 1 of 1.