CVE-2025-64442 | HumHub up to 1.17.3 Search Feature cross site scripting (GHSA-2hgp-33j2-93cc)

Inserito da Angelo Barbosa | Nov 8, 2025 | CVE

A vulnerability, which was classified as problematic, was found in HumHub up to 1.17.3. Impacted is an unknown function of the component Search Feature. The manipulation results in cross site scripting.

This vulnerability was named CVE-2025-64442. The attack may be performed from remote. There is no available exploit.

You should upgrade the affected component.

CVE-2025-64442 | HumHub up to 1.17.3 Search Feature cross site scripting (GHSA-2hgp-33j2-93cc)

Post correlati

CVE-2023-47526 | Chartify Plugin up to 2.0.6 on WordPress cross site scripting

CVE-2024-37994 | Siemens SIMATIC Reader RF610R CMIIT up to 4.1 Configuration backdoor (ssa-765405)

CVE-2024-7591 | Progress LoadMaster up to 7.2.60.0 os command injection

CVE-2024-47388 | SliceWP Plugin up to 1.1.18 on WordPress cross site scripting