M-Files: >> Hubshare >> 3.3.11.3 Security Vulnerabilities
Stored cross-site scripting vulnerability in M-Files Hubshare before version 25.8 allows authenticated attackers to cause script execution for other users.
CVSS Score
5.4
EPSS Score
0.0
Published
2025-09-15
Stored HTML Injection in Social Module in M-Files Hubshare before version 5.0.8.6 allows authenticated user to spoof UI
CVSS Score
5.4
EPSS Score
0.008
Published
2024-10-02
Reflected XSS in M-Files Hubshare before version 5.0.6.0 allows an attacker to execute arbitrary JavaScript code in the context of the victim's browser session
CVSS Score
5.4
EPSS Score
0.002
Published
2024-07-29
Stored XSS in M-Files Hubshare versions before 5.0.6.0 allows an authenticated attacker to execute arbitrary JavaScript in user's browser session
CVSS Score
5.4
EPSS Score
0.001
Published
2024-07-29
Stored Cross-Site Scripting vulnerability in Social Module in M-Files Hubshare before version 5.0.6.0 allows authenticated attacker to run scripts in other users browser
CVSS Score
5.4
EPSS Score
0.01
Published
2024-05-24