opencast Cyber Security Vulnerability Stats and Metrics

Video Publishing Flaw in Opencast by Opencast

CVE-2025-61906

OpencastOpencast2.3LOW

Cross-Site Scripting Flaw in Opencast Media Player

CVE-2025-61788

OpencastOpencast5.1MEDIUM

Path Traversal Vulnerability in Opencast Educational Content Platform

CVE-2025-55202

OpencastOpencast2.7LOW

Excessive Credential Exposure in Opencast by Opencast Project

CVE-2025-54380

OpencastOpencast6.5MEDIUM

Invalid Elasticsearch Queries Can Cause Massive Log Growth and Denial of Service in Opencast

CVE-2024-52797

OpencastOpencast6.5MEDIUM

Opencast Authenticated OpenRedirect Vulnerability

CVE-2022-41965

OpencastOpencast5.7MEDIUM

Limited Authentication Bypass for Media Files in Opencast

CVE-2022-29237

OpencastOpencast5.4MEDIUM

Files Accessible to External Parties in Opencast

CVE-2021-43821

OpencastOpencast👾🟡9.9CRITICAL

HTTP Method Spoofing in Opencast

CVE-2021-43807

OpencastOpencast7.5HIGH

Opencast vulnerable to billion laughs attack (XML bomb)

CVE-2021-32623

OpencastOpencast8.1HIGH

Removing access may not effect published series

CVE-2021-21318

OpencastOpencast5.4MEDIUM

Disabled Hostname Verification in OpenCast

CVE-2020-26234

OpencastOpencast4.8MEDIUM

Authentication Bypass For Endpoints With Anonymous Access in OpenCast

CVE-2020-5206

OpencastOpencast8.7HIGH

Opencast users with ROLE_COURSE_ADMIN can create new users

CVE-2020-5231

OpencastOpencast4.8MEDIUM

Opencast uses unsafe identifiers

CVE-2020-5230

OpencastOpencast7.7HIGH

Hard-Coded Key Used For Remember-me Token in OpenCast

CVE-2020-5222

OpencastOpencast6.8MEDIUM

Opencast stores passwords using outdated MD5 hash algorithm

CVE-2020-5229

OpencastOpencast7.7HIGH

Opencast allows unauthorized public access via OAI-PMH

CVE-2020-5228

OpencastOpencast7.6HIGH

Script Injection Vulnerability in Opencast Media Module

CVE-2017-1000217

OpencastOpencast8.8HIGH

opencast Summary

Vulnerability Published:

Sort By:

8 October 2025

Video Publishing Flaw in Opencast by Opencast

Cross-Site Scripting Flaw in Opencast Media Player

29 August 2025

Path Traversal Vulnerability in Opencast Educational Content Platform

26 July 2025

Excessive Credential Exposure in Opencast by Opencast Project

21 November 2024

Invalid Elasticsearch Queries Can Cause Massive Log Growth and Denial of Service in Opencast

28 November 2022

Opencast Authenticated OpenRedirect Vulnerability

24 May 2022

Limited Authentication Bypass for Media Files in Opencast

14 December 2021

Files Accessible to External Parties in Opencast

HTTP Method Spoofing in Opencast

16 June 2021

Opencast vulnerable to billion laughs attack (XML bomb)

18 February 2021

Removing access may not effect published series

8 December 2020

Disabled Hostname Verification in OpenCast

30 January 2020

Authentication Bypass For Endpoints With Anonymous Access in OpenCast

Opencast users with ROLE_COURSE_ADMIN can create new users

Opencast uses unsafe identifiers

Hard-Coded Key Used For Remember-me Token in OpenCast

Opencast stores passwords using outdated MD5 hash algorithm

Opencast allows unauthorized public access via OAI-PMH

17 November 2017

Script Injection Vulnerability in Opencast Media Module