Known Vulnerabilities for products from Flarum
Listed below are 5 of the newest known vulnerabilities associated with the vendor "Flarum".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-27577 | flarum is a forum software package for building communities. In versions prior to 1.7.0 an admin account which has already be... | 4.9 - MEDIUM | 2023-03-10 | 2023-03-10 |
| CVE-2023-22489 | Flarum is a discussion platform for websites. If the first post of a discussion is permanently deleted but the discussion sta... | 3.5 - LOW | 2023-01-13 | 2023-01-13 |
| CVE-2023-22488 | Flarum is a forum software for building communities. Using the notifications feature, one can read restricted/private content... | 5.4 - MEDIUM | 2023-01-12 | 2023-01-12 |
| CVE-2023-22487 | Flarum is a forum software for building communities. Using the mentions feature provided by the flarum/mentions extension, us... | 4.3 - MEDIUM | 2023-01-11 | 2023-01-11 |
| CVE-2021-32671 | Flarum is a forum software for building communities. Flarum's translation system allowed for string inputs to be converted in... | 10 - CRITICAL | 2021-06-07 | 2021-06-17 |
| CVE-2021-21283 | Flarum is an open source discussion platform for websites. The "Flarum Sticky" extension versions 0.1.0-beta.14 and 0.1.0-bet... | 5.4 - MEDIUM | 2021-01-26 | 2021-02-04 |
| CVE-2019-13183 | Flarum before 0.1.0-beta.9 allows CSRF against all POST endpoints, as demonstrated by changing admin settings. | 8.8 - HIGH | 2019-07-07 | 2019-07-09 |
| CVE-2019-11514 | User/Command/ConfirmEmailHandler.php in Flarum before 0.1.0-beta.8 mishandles invalidation of user email tokens. | 7.5 - HIGH | 2019-04-25 | 2020-08-24 |
| CVE-2018-19133 | In Flarum Core 0.1.0-beta.7.1, a serious leak can get everyone's email address. | 5.3 - MEDIUM | 2018-11-09 | 2018-12-31 |
Known software with vulnerabilities from Flarum
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Flarum | Flarum | 0.1.0 |
| Application | Flarum | Sticky | 0.1.0 |
Popular searches for "Flarum"
Flarum
flarum.orgFlarum Flarum i g e is the next-generation forum software that makes online discussion fun. It's simple, fast, and free.
www.flarumpro.com Software release life cycle Plug-in (computing) Programmer Patch (computing) Comparison of Internet forum software Computer-mediated communication Free software Upgrade Giffgaff Browser extension User (computing) GitHub Tag (metadata) Computing platform Database Filename extension Blog Loader (computing) Search engine optimization Open-source software
flarum/flarum
github.com/flarum/flarumflarum/flarum Simple forum software for building great communities. - flarum flarum
GitHub Comparison of Internet forum software Installation (computer programs) Vulnerability (computing) PHP Repository (version control) Computing platform Software repository Command-line interface Xcode Microsoft Visual Studio Tag (metadata) Computer file Software license Internet forum Application programming interface Computer security JSON Software bloat Software release life cycle