CVE-2025-64442

High CVSS: 7.1

HumHub is an Open Source Enterprise Social Network. Versions below 1.17.4 have a XSS vulnerability in the Meta-Search feature which allows malicious input to be executed in search previews. This issue is fixed in version 1.17.4.

Vendor

Humhub

Product

Humhub

CWE

CWE-79

Yayın Tarihi

2025-11-07 21:15:41

Güncelleme

2025-11-26 15:41:54

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-79 Humhub HIGH Humhub 2025

Referanslar

https://github.com/humhub/humhub/pull/7814 https://github.com/humhub/humhub/releases/tag/v1.17.4 https://github.com/humhub/humhub/security/advisories/GHSA-2hgp-33j2-93cc

Benzer Kayıtlar

Medium

CVE-2026-29048

HumHub is an Open Source Enterprise Social Network. In version 1.18.0, a cross-site scripting vulnerability was identifi…

Medium

CVE-2026-29052

The Calendar module for HumHub enables users to create one-time or recurring events, manage attendee invitations, and ef…

Medium

CVE-2025-54789

Files is a module for managing files inside spaces and user profiles. In versions 0.16.9 and below, the File Move functi…

Critical

CVE-2025-54790

Files is a module for managing files inside spaces and user profiles. In versions 0.16.9 and below, Files does not have…