firefly-iii

Top products

The 15 most recently published vulnerabilities affecting firefly-iii.

• CVE-2024-37893MFA bypass in oauth flow in Firefly III5.9Jun 17, 2024
• CVE-2024-22075Firefly III (aka firefly-iii) before 6.1.1 allows webhooks HTML Injection.6.1Jan 5, 2024
• CVE-2023-1788Insufficient Session Expiration in firefly-iii/firefly-iii9.8Apr 5, 2023
• CVE-2023-1789Improper Input Validation in firefly-iii/firefly-iii9.8Apr 1, 2023
• CVE-2023-0298Incorrect Authorization in firefly-iii/firefly-iii6.5Jan 14, 2023
• CVE-2021-4005Cross-Site Request Forgery (CSRF) in firefly-iii/firefly-iii4.3Dec 4, 2021
• CVE-2021-4015Cross-Site Request Forgery (CSRF) in firefly-iii/firefly-iii4.3Dec 1, 2021
• CVE-2021-3921Cross-Site Request Forgery (CSRF) in firefly-iii/firefly-iii4.3Nov 13, 2021
• CVE-2021-3901Cross-Site Request Forgery (CSRF) in firefly-iii/firefly-iii8.8Oct 27, 2021
• CVE-2021-3900Cross-Site Request Forgery (CSRF) in firefly-iii/firefly-iii6.5Oct 27, 2021
• CVE-2021-3851Open Redirect in firefly-iii/firefly-iii5.4Oct 19, 2021
• CVE-2021-3846Unrestricted Upload of File with Dangerous Type in firefly-iii/firefly-iii8.8Oct 19, 2021
• CVE-2021-3819Cross-Site Request Forgery (CSRF) in firefly-iii/firefly-iii8.8Sep 27, 2021
• CVE-2021-3730Cross-Site Request Forgery (CSRF) in firefly-iii/firefly-iii6.5Aug 23, 2021
• CVE-2021-3729Cross-Site Request Forgery (CSRF) in firefly-iii/firefly-iii4.3Aug 23, 2021