Impact
Users who were forced to change their password by an administrator could perform unauthorized actions and retrieve other users' data.
Patches
It is recommended that the HumHub is upgraded to 1.11.0, 1.10.4 or 1.9.4.
References
For more information
If you have any questions or comments about this advisory:
- Create a post in our Community
- Customers: Open a support ticket
Impact
Users who were forced to change their password by an administrator could perform unauthorized actions and retrieve other users' data.
Patches
It is recommended that the HumHub is upgraded to 1.11.0, 1.10.4 or 1.9.4.
References
For more information
If you have any questions or comments about this advisory: