Hamastar

Meetinghub Paperless Meetings

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2026-1332

  • EPSS 0.03%
  • Veröffentlicht 22.01.2026 09:18:27
  • Zuletzt bearbeitet 17.02.2026 19:16:13

MeetingHub developed by HAMASTAR Technology has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access specific API functions and obtain meeting-related information.

9.8

CVE-2026-1331

  • EPSS 0.09%
  • Veröffentlicht 22.01.2026 08:57:22
  • Zuletzt bearbeitet 17.02.2026 19:32:31

MeetingHub developed by HAMASTAR Technology has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.

7.5

CVE-2026-1330

  • EPSS 0.03%
  • Veröffentlicht 22.01.2026 08:29:25
  • Zuletzt bearbeitet 17.02.2026 19:31:32

MeetingHub developed by HAMASTAR Technology has an Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Absolute Path Traversal to download arbitrary system files.

8.8

CVE-2024-6117

  • EPSS 0.67%
  • Veröffentlicht 05.08.2024 05:15:39
  • Zuletzt bearbeitet 30.08.2024 17:41:50

A Unrestricted upload of file with dangerous type vulnerability in meeting management function in Hamastar MeetingHub Paperless Meetings 2021 allows remote authenticated users to perform arbitrary system commands via a crafted ASP file.

9.1

CVE-2024-6118

  • EPSS 0.15%
  • Veröffentlicht 05.08.2024 05:15:39
  • Zuletzt bearbeitet 30.08.2024 17:44:20

A Plaintext Storage of a Password vulnerability in ebooknote function in Hamastar MeetingHub Paperless Meetings 2021 allows remote attackers to obtain the other users’ credentials and gain access to the product via an XML file.