WEB APPLICATION VULNERABILITIES SCA (Software Composition Analysis)

CVE-2017-7685 Vulnerability in maven package org.apache.openmeetings:openmeetings-web

Description

Apache OpenMeetings 1.0.0 responds to the following insecure HTTP methods: PUT, DELETE, HEAD, and PATCH.

Remediation

References

http://markmail.org/message/uxk4bpq35svnyjhb

http://www.securityfocus.com/bid/99592

Related Vulnerabilities

CVE-2017-16051 Vulnerability in npm package sqliter

CVE-2018-1190 Vulnerability in maven package org.cloudfoundry.identity:cloudfoundry-identity-model

CVE-2018-3721 Vulnerability in maven package org.webjars:lodash

CVE-2016-10539 Vulnerability in maven package org.webjars.npm:negotiator

CVE-2020-28433 Vulnerability in npm package node-latex-pdf

Severity

Medium

Classification

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Third Party Advisory VDB Entry NVD-CWE-noinfo