Vulnerabilities > Flarum
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-05 | CVE-2024-21641 | Open Redirect vulnerability in Flarum Flarum is open source discussion platform software. | 4.7 |
| 2023-08-16 | CVE-2023-40033 | Server-Side Request Forgery (SSRF) vulnerability in Flarum Flarum is an open source forum software. | 7.1 |
| 2023-03-10 | CVE-2023-27577 | Path Traversal vulnerability in Flarum flarum is a forum software package for building communities. | 4.9 |
| 2023-01-13 | CVE-2023-22489 | Missing Authorization vulnerability in Flarum Flarum is a discussion platform for websites. | 3.5 |
| 2023-01-12 | CVE-2023-22488 | Missing Authorization vulnerability in Flarum Flarum is a forum software for building communities. | 5.4 |
| 2023-01-11 | CVE-2023-22487 | Unspecified vulnerability in Flarum Flarum is a forum software for building communities. | 4.3 |
| 2022-11-19 | CVE-2022-41938 | Cross-site Scripting vulnerability in Flarum 1.5.0/1.6.0/1.6.1 Flarum is an open source discussion platform. | 5.4 |
| 2021-06-07 | CVE-2021-32671 | Cross-site Scripting vulnerability in Flarum 1.0.0/1.0.1 Flarum is a forum software for building communities. | 10.0 |
| 2021-01-26 | CVE-2021-21283 | Cross-site Scripting vulnerability in Flarum Sticky 0.1.0 Flarum is an open source discussion platform for websites. | 5.4 |
| 2019-07-07 | CVE-2019-13183 | Cross-Site Request Forgery (CSRF) vulnerability in Flarum 0.1.0 Flarum before 0.1.0-beta.9 allows CSRF against all POST endpoints, as demonstrated by changing admin settings. | 8.8 |