Vulnerabilities > Friendica

DATE	CVE	VULNERABILITY TITLE	RISK
2024-08-20	CVE-2024-39094	Cross-site Scripting vulnerability in Friendica 2024.03 Friendica 2024.03 is vulnerable to Cross Site Scripting (XSS) in settings/profile via the homepage, xmpp, and matrix parameters. network low complexity friendica CWE-79	5.4
2024-08-15	CVE-2024-27729	Cross-site Scripting vulnerability in Friendica 2023.12 Cross Site Scripting vulnerability in Friendica v.2023.12 allows a remote attacker to obtain sensitive information via the location parameter of the calendar event feature. network low complexity friendica CWE-79	6.1
2021-04-05	CVE-2021-30141	Memory Leak vulnerability in Friendica Module/Settings/UserExport.php in Friendica through 2021.01 allows settings/userexport to be used by anonymous users, as demonstrated by an attempted access to an array offset on a value of type null, and excessive memory consumption. network low complexity friendica CWE-401	7.5

Vulnerabilities > Friendica {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Friendica"}]}