Openvidreview

openvidreview

Vendor: Davidguva • 2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-46055 1Davidguva 1Openvidreview May 15, 2025 Nov 27, 2024 N/A· v4 4.8 MEDIUM· v3 N/A· v2 OpenVidReview 1.0 is vulnerable to Cross Site Scripting (XSS) in review names.
CVE-2024-46054 1Davidguva 1Openvidreview May 15, 2025 Nov 27, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 OpenVidReview 1.0 is vulnerable to Incorrect Access Control. The /upload route is accessible without authentication, allowing any user to upload files.