pkg:NuGet/YAFNET.Core
3 total CVEsHIGH3
✅ Check your installed version
All known vulnerabilities
- HIGH8.8CVE-2026-43937YAFNET: Pre-Handler Authorization Bypass on Admin Pages Enables Blind SQL Execution via `/Admin/RunSql`from 0, < 4.0.5
- HIGH8.1CVE-2026-43938YAFNET has Unauthenticated Stored Second-Order XSS in Admin Event Log via Reflected `User-Agent` Header>= 4.0.0-beta01, < 4.0.5
- HIGH7.3CVE-2026-43939YAFNET has Stored XSS in Forum Thread Posts/Replies that Allows Arbitrary JavaScript Execution for All Thread Viewers>= 4.0.0-beta01, < 4.0.5