Open Atrium Project Open Atrium — known CVE vulnerabilities
Every CVE whose affected-product data names Open Atrium Project Open Atrium, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2014-9502 — CVSS 8.8 (high): Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified sub modules in the Open Atrium module 7.x-2.x before 7.x-2.26 for…
CVE-2014-9504 — CVSS 7.5 (high): The OG Subgroups module, when used with the Open Atrium module 7.x-2.x before 7.x-2.26 for Drupal, allows remote attackers to access child…
CVE-2014-9503 — CVSS 6.5 (medium): The Discussions sub module in the Open Atrium module 7.x-2.x before 7.x-2.26 for Drupal allows remote authenticated users with "access…
CVE-2014-8736 — CVSS 5.0 (medium): The Open Atrium Core module for Drupal before 7.x-2.22 allows remote attackers to bypass access restrictions and read file attachments that…