CVE-2019-13931

Name of the Vulnerable Software and Affected Versions XHQ versions prior to 6.0.0.2

Description A vulnerability has been identified that could allow an attacker to craft unexpected input in the web interface, causing the application to behave in unexpected ways for legitimate users. Successful exploitation requires the attacker to be authenticated to the web interface. This could allow the attacker to modify the contents of the web application. No public exploitation of this security issue was known at the time of advisory publication.

Recommendations For versions prior to 6.0.0.2, update to version 6.0.0.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the web interface to minimize the risk of exploitation.