All 5 CVE vulnerabilities found in Meridian, with AI-generated Chinese analysis, references, and POCs.
Vendor: The OpenNMS Group
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-0870 | Form Can Be Manipulated with Cross-Site Request Forgery (CSRF) CWE-352 | 8.1 | High | 2023-03-22 |
| CVE-2023-0815 | Plaintext Password Present in the Web logs CWE-532 | 6.8 | Medium | 2023-02-23 |
| CVE-2023-0867 | Multiple stored and reflected Cross-site Scripting in webapp CWE-79 | 6.7 | Medium | 2023-02-23 |
| CVE-2023-0868 | Stealing Cookies using Reflected XSS via graph results CWE-20 | 6.7 | Medium | 2023-02-23 |
| CVE-2023-0869 | Cross-site scripting in outage/list.htm CWE-20 | 5.8 | Medium | 2023-02-23 |
All 5 known CVE vulnerabilities affecting Meridian with full Chinese analysis, references, and POCs where available.