CVE-2016-3089 (openmeetings)

CVE-2016-3089 (openmeetings)

Cross-site scripting (XSS) vulnerability in the SWF panel in Apache OpenMeetings before 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the swf parameter.

Source: CVE-2016-3089 (openmeetings)