pkg:Packagist/grumpydictator/firefly-iii

共 22 筆 CVEHIGH1MEDIUM19LOW2

✅ 檢查你的版本

所有已知漏洞

HIGH8.8CVE-2021-3846Unrestricted File Upload vulnerability in Firefly III
from 0, < 5.6.2
MEDIUM6.5CVE-2024-22075Firefly III allows webhooks HTML Injection.
from 0, < 6.1.1
MEDIUM6.5CVE-2023-0298Improper Authorization in grumpydictator/firefly-iii
from 0, < 5.8.0
MEDIUM6.5CVE-2021-3900Cross-Site Request Forgery in firefly-iii
from 0, <= 5.6.2
MEDIUM6.5CVE-2021-3728firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
from 0, < 5.6.0
MEDIUM6.5CVE-2021-3730firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
from 0, < 5.6.0
MEDIUM5.9CVE-2024-37893Firefly III has a MFA bypass in oauth flow
from 0, < 6.1.17
MEDIUM5.9CVE-2023-1789Firefly III vulnerable to improper input validation
from 0, < 6.0.0
MEDIUM5.4CVE-2019-13647Firefly III vulnerable to image-based stored XSS
from 0, < 4.7.17.3
MEDIUM5.4CVE-2019-13646Firefly III vulnerable to reflected cross-site scripting
from 0, < 4.7.17.3
MEDIUM5.4CVE-2019-13645Firefly III vulnerable to stored XSS
from 0, < 4.7.17.3
MEDIUM5.4CVE-2019-13644Firefly III vulnerable to stored XSS
from 0, < 4.7.17.1
MEDIUM5.4CVE-2021-3921firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
from 0, < 5.6.3
MEDIUM5.3CVE-2021-3663No Restriction of Excessive Authentication Attempts in Firefly III
from 0, < 5.5.13
MEDIUM5.0CVE-2021-3851Open Redirect in firefly-iii
from 0, < 5.6.2
MEDIUM4.3CVE-2021-4005Cross Site Request Forgery in firefly-iii
from 0, < 5.6.5
MEDIUM4.3CVE-2021-4015firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
from 0, < 5.6.5
MEDIUM4.3CVE-2021-3819Cross-Site Request Forgery in firefly-iii
from 0, < 5.6.1
MEDIUM4.3CVE-2021-3729firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
from 0, < 5.6.0
MEDIUM4.2CVE-2023-1788Firefly III insufficiently expires sessions
from 0, < 6.0.0
LOW3.5CVE-2021-3901Cross-Site Request Forgery in firefly-iii
from 0, <= 5.6.2
LOW3.3CVE-2019-14671Improper Input Validation in Firefly III
from 0, < 4.7.17.4