Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

firefly-iii

2 Products 16 CVEs

CVE Severity Distribution (All Time)

Critical
0
High
0
Medium
15
Low
1

Timeline Overview

Last 30 Days 0 CVEs
Last 6 Months 0 CVEs
Last Year 0 CVEs

Products

View all

firefly-iii/firefly-iii

4 Versions 15 CVEs

firefly-iii

1 Version 1 CVE

Recent CVEs

View all
CVE-2024-37893 MEDIUM 1 year ago

Firefly III is a free and open source personal finance manager. In affected versions an MFA bypass in the Firefly III OAuth flow may allow malicious …

CVE-2023-1788 MEDIUM 2 years, 3 months ago

Insufficient Session Expiration in GitHub repository firefly-iii/firefly-iii prior to 6.

CVE-2023-1789 MEDIUM 2 years, 3 months ago

Improper Input Validation in GitHub repository firefly-iii/firefly-iii prior to 6.0.0.

CVE-2023-0298 MEDIUM 2 years, 5 months ago

Incorrect Authorization in GitHub repository firefly-iii/firefly-iii prior to 5.8.0.

CVE-2021-4005 MEDIUM 3 years, 7 months ago

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

CVE-2021-4015 MEDIUM 3 years, 7 months ago

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

CVE-2021-3921 MEDIUM 3 years, 7 months ago

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

CVE-2021-3901 LOW 3 years, 8 months ago

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

CVE-2021-3900 MEDIUM 3 years, 8 months ago

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

CVE-2021-3851 MEDIUM 3 years, 8 months ago

firefly-iii is vulnerable to URL Redirection to Untrusted Site