GHSA-5gq7-826w-8282
GitHub Security Advisory
Unrestricted File Upload vulnerability in Firefly III
✓ GitHub Reviewed
HIGH
Has CVE
Advisory Details
firefly-iii is vulnerable to Unrestricted Upload of File with Dangerous Type
Affected Packages
Packagist
grumpydictator/firefly-iii
Affected versions:
0
(fixed in 5.6.2)
Related CVEs
Key Information
7.5
/10
Dataset
Last updated: July 12, 2025 6:29 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.