Unrated severityOSV Advisory· Published Mar 18, 2019· Updated Aug 4, 2024
CVE-2019-9094
CVE-2019-9094
Description
A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in /s/adada/cfiles/upload in Humhub 1.3.10 Community Edition. The user-supplied input containing JavaScript in the filename is echoed back in JavaScript code, which resulted in XSS.
Affected products
2Patches
Vulnerability mechanics
References
1- github.com/humhub/humhub/blob/master/protected/humhub/docs/CHANGELOG.mdmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.