Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
firefly iii vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-3921
firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
Firefly-iii Firefly Iii
4.3
CVSSv2
CVE-2021-3728
firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
Firefly-iii Firefly Iii -
4.3
CVSSv2
CVE-2021-3729
firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
Firefly-iii Firefly Iii -
4.3
CVSSv2
CVE-2021-3730
firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
Firefly-iii Firefly Iii -
NA
CVE-2023-0298
Incorrect Authorization in GitHub repository firefly-iii/firefly-iii before 5.8.0.
Firefly-iii Firefly Iii
4.9
CVSSv2
CVE-2021-3851
firefly-iii is vulnerable to URL Redirection to Untrusted Site
Firefly-iii Firefly Iii
3.5
CVSSv2
CVE-2019-13645
Firefly III prior to 4.7.17.3 is vulnerable to stored XSS due to lack of filtration of user-supplied data in image file names. The JavaScript code is executed during attachments/edit/$file_id$ attachment editing. NOTE: It is asserted that an attacker must have the same access rig...
Firefly-iii Firefly Iii
3.5
CVSSv2
CVE-2019-13646
Firefly III prior to 4.7.17.3 is vulnerable to reflected XSS due to lack of filtration of user-supplied data in a search query. NOTE: It is asserted that an attacker must have the same access rights as the user in order to be able to execute the vulnerability
Firefly-iii Firefly Iii
4.3
CVSSv2
CVE-2021-4005
firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
Firefly-iii Firefly Iii
4.3
CVSSv2
CVE-2021-4015
firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
Firefly-iii Firefly Iii
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »