CVE-2019-13932

Name of the Vulnerable Software and Affected Versions XHQ versions prior to 6.0.0.2

Description A vulnerability has been identified that allows manipulation of web application requests, causing unexpected behavior for legitimate users. This issue can be exploited without requiring the attacker to be authenticated. A successful attack could enable the import of scripts or the generation of malicious links, potentially allowing the attacker to read or modify the contents of the web application. At the time of advisory publication, no public exploitation of this security issue was known.

Recommendations For versions prior to 6.0.0.2, update to version 6.0.0.2 or later to resolve the issue.