VYPR
Medium severity5.4OSV Advisory· Published Apr 18, 2018· Updated Jun 17, 2026

CVE-2018-9999

CVE-2018-9999

Description

In Zulip Server versions before 1.7.2, there was an XSS issue with user uploads and the (default) LOCAL_UPLOADS_DIR storage backend.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.