High severity8.2NVD Advisory· Published Oct 31, 2022· Updated Jun 17, 2026
CVE-2022-39016
CVE-2022-39016
Description
Javascript injection in PDFtron in M-Files Hubshare before 3.3.10.9 allows authenticated attackers to perform an account takeover via a crafted PDF upload.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<3.3.10.9+ 1 more
- (no CPE)range: <3.3.10.9
- (no CPE)range: 3.3.1.6
- Range: <3.3.10.9
Patches
Vulnerability mechanics
References
1- www.themissinglink.com.au/security-advisories/cve-2022-39016nvdThird Party Advisory
News mentions
0No linked articles in our index yet.