Vulnerabilities in opencast
18 resultsCVE-2021-43821CRITICALFiles Accessible to External Parties in OpencastEPSS 2.0%CVE-2021-43807HIGHHTTP Method Spoofing in OpencastEPSS 1.4%CVE-2020-5206HIGHAuthentication Bypass For Endpoints With Anonymous Access in OpenCastEPSS 1.3%CVE-2021-32623HIGHOpencast vulnerable to billion laughs attack (XML bomb)EPSS 1.3%CVE-2020-5230HIGHOpencast uses unsafe identifiersEPSS 1.2%CVE-2020-5228HIGHOpencast allows unauthorized public access via OAI-PMHEPSS 1.0%CVE-2020-5222MEDIUMHard-Coded Key Used For Remember-me Token in OpenCastEPSS 0.9%CVE-2024-52797MEDIUMSearching Opencast may cause a denial of serviceEPSS 0.9%CVE-2021-21318MEDIUMRemoving access may not effect published seriesEPSS 0.7%CVE-2020-5229HIGHOpencast stores passwords using outdated MD5 hash algorithmEPSS 0.6%CVE-2020-5231MEDIUMOpencast users with ROLE_COURSE_ADMIN can create new usersEPSS 0.6%CVE-2022-29237MEDIUMLimited Authentication Bypass for Media Files in OpencastEPSS 0.5%CVE-2025-55202LOWOpencast has a partial path traversal vulnerability in UI configEPSS 0.4%CVE-2022-41965MEDIUMOpencast Authenticated OpenRedirect VulnerabilityEPSS 0.3%CVE-2025-54380MEDIUMOpencast still publishes global system account credentialsEPSS 0.3%CVE-2020-26234MEDIUMDisabled Hostname Verification in OpenCastEPSS 0.3%CVE-2025-61906LOWOpencast's editor accidentally publishes videos/overwrites publications #1626EPSS 0.3%CVE-2025-61788MEDIUMOpencast Paella Player 7 vulnerable to Cross-Site-ScriptingEPSS 0.2%