Vulnerabilities > Fluxbb
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-04 | CVE-2021-43677 | Cross-site Scripting vulnerability in Fluxbb 1.4.12 Fluxbb v1.4.12 is affected by a Cross Site Scripting (XSS) vulnerability. | 4.3 |
| 2021-03-17 | CVE-2020-28873 | Use of Password Hash With Insufficient Computational Effort vulnerability in Fluxbb 1.5.11 Fluxbb 1.5.11 is affected by a denial of service (DoS) vulnerability by sending an extremely long password via the user login form. | 7.5 |
| 2020-12-30 | CVE-2020-35240 | Cross-site Scripting vulnerability in Fluxbb 1.5.11 FluxBB 1.5.11 is affected by cross-site scripting (XSS in the Blog Content component. | 3.5 |
| 2020-01-22 | CVE-2011-3621 | Unspecified vulnerability in Fluxbb A reverse proxy issue exists in FluxBB before 1.4.7 when FORUM_BEHIND_REVERSE_PROXY is enabled. | 7.5 |
| 2015-02-03 | CVE-2014-9574 | Path Traversal vulnerability in Fluxbb Directory traversal vulnerability in install.php in FluxBB before 1.5.8 allows remote attackers to include and execute arbitrary local install.php files via a .. | 9.3 |
| 2015-01-13 | CVE-2014-10030 | Remote Security vulnerability in FluxBB Open redirect vulnerability in forums/login.php in FluxBB before 1.4.13 and 1.5.x before 1.5.7 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect_url parameter. network fluxbb | 5.8 |
| 2015-01-13 | CVE-2014-10029 | SQL Injection vulnerability in Fluxbb SQL injection vulnerability in profile.php in FluxBB before 1.4.13 and 1.5.x before 1.5.7 allows remote attackers to execute arbitrary SQL commands via the req_new_email parameter. | 7.5 |