You can report vulnerabilities privately to security@humhub.com. The HumHub team will triage the issue, and work with you on a coordinated disclosure timeline.
Security: humhub/humhub
Security
SECURITY.md
-
XSS in Space AdminGHSA-p7h3-73v7-959c published
Jul 6, 2022 by luke-High -
Improper access control when user is forced to change passwordGHSA-2h35-f226-3f57 published
Apr 19, 2022 by luke-Critical -
Authorization Bypass in Space InviteGHSA-f5hc-5wfr-7v74 published
Dec 20, 2021 by luke-Moderate
Learn more about advisories related to humhub/humhub in the GitHub Advisory Database