Open OnDemand before 1.5.7 and 1.6.x before 1.6.22 allows CSRF.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HOsc Open Ondemand
APPOsc< 1.5.71.6.0 – 1.6.22 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
Related vulnerabilities
CVE-2025-66029HIGH7.6ten sam produkt
Open OnDemand provides remote web access to supercomputers. In versions 4.0.8 and prior, the Apache proxy allo...
CVE-2026-26002MEDIUM6.3ten sam produkt
Open OnDemand is an open-source high-performance computing portal. The Files application in OnDemand versions ...