← Back to CVE List
CVE-2019-9093
A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in file/file/upload in Humhub 1.3.10 Community Edition. The user-supplied input containing a JavaScript payload in the filename parameter is echoed back, which resulted in reflected XSS.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt