CVE-2024-39094 Information

Description

Friendica 2024.03 is vulnerable to Cross Site Scripting (XSS) in settings/profile via the homepage xmpp and matrix parameters.

Reference

https://github.com/friendica/friendica/issues/14220 https://friendi.ca/2024/08/17/friendica-2024-08-released/ https://github.com/friendica/friendica/releases/tag/2024.08