A vulnerability was found in opf openproject up to 17.3.x . It has been classified as problematic . Affected by this vulnerability is an unknown functionality of the file /api/v3/meetings . This manipulation causes information disclosure. This vulnerability is tracked as CVE-2026-49355 . The attack is possible to be carried out remotely. No exploit exists. Upgrading the affected component is recommended.