Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
m-files hubshare vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-39016
Javascript injection in PDFtron in M-Files Hubshare prior to 3.3.10.9 allows authenticated malicious users to perform an account takeover via a crafted PDF upload.
M-files Hubshare
NA
CVE-2022-39017
Improper input validation and output encoding in all comments fields, in M-Files Hubshare prior to 3.3.10.9 allows authenticated malicious users to introduce cross-site scripting attacks via specially crafted comments.
M-files Hubshare
NA
CVE-2022-39018
Broken access controls on PDFtron data in M-Files Hubshare prior to 3.3.11.3 allows unauthenticated malicious users to access restricted PDF files via a known URL.
M-files Hubshare
NA
CVE-2022-39019
Broken access controls on PDFtron WebviewerUI in M-Files Hubshare prior to 3.3.11.3 allows unauthenticated malicious users to upload malicious files to the application server.
M-files Hubshare
NA
CVE-2024-5142
Stored Cross-Site Scripting vulnerability in Social Module in M-Files Hubshare before version 5.0.3.8 allows authenticated malicious user to run scripts in other users browser
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started