{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-06T06:36:18.219","vulnerabilities":[{"cve":{"id":"CVE-2026-34020","sourceIdentifier":"security@apache.org","published":"2026-04-09T16:16:27.090","lastModified":"2026-04-15T15:21:20.030","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use of GET Request Method With Sensitive Query Strings vulnerability in Apache OpenMeetings.\n\nThe REST login endpoint uses HTTP GET method with username and password passed as query parameters. Please check references regarding possible impact\n\n\nThis issue affects Apache OpenMeetings: from 3.1.3 before 9.0.0.\n\nUsers are recommended to upgrade to version 9.0.0, which fixes the issue."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security@apache.org","type":"Secondary","description":[{"lang":"en","value":"CWE-598"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:apache:openmeetings:*:*:*:*:*:*:*:*","versionStartIncluding":"3.1.3","versionEndExcluding":"9.0.0","matchCriteriaId":"D575157B-A67F-474D-AD60-56D636F1AF5A"}]}]}],"references":[{"url":"https://lists.apache.org/thread/2h3h9do5tp17xldr0nps1yjmkx4vs3db","source":"security@apache.org","tags":["Vendor Advisory","Mailing List"]},{"url":"https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url","source":"security@apache.org","tags":["Not Applicable"]},{"url":"http://www.openwall.com/lists/oss-security/2026/04/09/12","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]}]}}]}