Openreplay: >> Openreplay >> 1.15.0 Security Vulnerabilities
OpenReplay is a self-hosted session replay suite. Prior to version 1.20.0, the POST /{projectId}/cards/search endpoint has a SQL injection in the sort.field parameter. This issue has been patched in version 1.20.0.
CVSS Score
9.8
EPSS Score
0.0
Published
2026-03-05