CVE-2017-7681: SQL Injection

July 17, 2017 (updated July 19, 2017)

Apache OpenMeetings is vulnerable to SQL injection. This allows authenticated users to modify the structure of the existing query and leak the structure of other queries being made by the application in the back-end.

References

nvd.nist.gov/vuln/detail/CVE-2017-7681

Detect and mitigate CVE-2017-7681 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →