CVEs and Security Vulnerabilities CVEs and Security Vulnerabilities

Filtered by vendor Openvidreview Project Subscriptions

Filtered by product Openvidreview Subscriptions

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-46054	1 Openvidreview Project	1 Openvidreview	2024-12-02	9.8 Critical
OpenVidReview 1.0 is vulnerable to Incorrect Access Control. The /upload route is accessible without authentication, allowing any user to upload files.
CVE-2024-46055	1 Openvidreview Project	1 Openvidreview	2024-11-27	4.8 Medium
OpenVidReview 1.0 is vulnerable to Cross Site Scripting (XSS) in review names.

Page 1 of 1.