Vulnerabilities > Flarum > Flarum > 0.1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-05 | CVE-2024-21641 | Open Redirect vulnerability in Flarum Flarum is open source discussion platform software. | 4.7 |
| 2023-08-16 | CVE-2023-40033 | Server-Side Request Forgery (SSRF) vulnerability in Flarum Flarum is an open source forum software. | 7.1 |
| 2023-03-10 | CVE-2023-27577 | Path Traversal vulnerability in Flarum flarum is a forum software package for building communities. | 4.9 |
| 2023-01-12 | CVE-2023-22488 | Missing Authorization vulnerability in Flarum Flarum is a forum software for building communities. | 5.4 |
| 2023-01-11 | CVE-2023-22487 | Unspecified vulnerability in Flarum Flarum is a forum software for building communities. | 4.3 |
| 2019-07-07 | CVE-2019-13183 | Cross-Site Request Forgery (CSRF) vulnerability in Flarum 0.1.0 Flarum before 0.1.0-beta.9 allows CSRF against all POST endpoints, as demonstrated by changing admin settings. | 6.8 |
| 2019-04-25 | CVE-2019-11514 | Incomplete Cleanup vulnerability in Flarum 0.1.0 User/Command/ConfirmEmailHandler.php in Flarum before 0.1.0-beta.8 mishandles invalidation of user email tokens. | 5.0 |
| 2018-11-09 | CVE-2018-19133 | Information Exposure vulnerability in Flarum 0.1.0 In Flarum Core 0.1.0-beta.7.1, a serious leak can get everyone's email address. | 5.0 |