Vulnerabilities > Openmicroscopy > Omero WEB > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-10-14 CVE-2021-41132 Cross-site Scripting vulnerability in Openmicroscopy Omero-Figure and Omero-Web
OMERO.web provides a web based client and plugin infrastructure.
network
low complexity
openmicroscopy CWE-79
6.1
6.1
2021-03-23 CVE-2021-21377 Unspecified vulnerability in Openmicroscopy Omero.Web 5.6.3
OMERO.web is open source Django-based software for managing microscopy imaging.
network
low complexity
openmicroscopy
5.4
5.4
2021-03-23 CVE-2021-21376 Unspecified vulnerability in Openmicroscopy Omero.Web 5.6.3
OMERO.web is open source Django-based software for managing microscopy imaging.
network
low complexity
openmicroscopy
6.5
6.5
2020-06-17 CVE-2020-7932 Information Exposure vulnerability in Openmicroscopy Omero.Web
OMERO.web before 5.6.3 optionally allows sensitive data elements (e.g., a session key) to be passed as URL query parameters.
network
low complexity
openmicroscopy CWE-200
5.7
5.7