Vulnerabilities > CVE-2023-1788 - Unspecified vulnerability in Firefly-Iii Firefly III
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Insufficient Session Expiration in GitHub repository firefly-iii/firefly-iii prior to 6.
Vulnerable Configurations
References
- https://github.com/firefly-iii/firefly-iii/commit/68f398f97cbe1870fc098d8460bf903b9c3fab30
- https://github.com/firefly-iii/firefly-iii/commit/68f398f97cbe1870fc098d8460bf903b9c3fab30
- https://huntr.dev/bounties/79323c9e-e0e5-48ef-bd19-d0b09587ccb2
- https://huntr.dev/bounties/79323c9e-e0e5-48ef-bd19-d0b09587ccb2