Version unspecified

CVE-2023-1788

Insufficient Session Expiration in GitHub repository firefly-iii/firefly-iii prior to 6.

MEDIUM CVSS 5.4 Published Apr 05, 2023

CVE-2023-1789

Improper Input Validation in GitHub repository firefly-iii/firefly-iii prior to 6.0.0.

MEDIUM CVSS 5.2 Published Apr 01, 2023

CVE-2023-0298

Incorrect Authorization in GitHub repository firefly-iii/firefly-iii prior to 5.8.0.

MEDIUM CVSS 6.5 Published Jan 14, 2023

CVE-2021-4005

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

MEDIUM CVSS 4.3 Published Dec 04, 2021

CVE-2021-4015

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

MEDIUM CVSS 4.3 Published Dec 01, 2021

CVE-2021-3921

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

MEDIUM CVSS 5.4 Published Nov 13, 2021

CVE-2021-3901

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

LOW CVSS 3.5 Published Oct 27, 2021

CVE-2021-3900

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

MEDIUM CVSS 4.3 Published Oct 27, 2021

CVE-2021-3851

firefly-iii is vulnerable to URL Redirection to Untrusted Site

MEDIUM CVSS 5.0 Published Oct 19, 2021

CVE-2021-3846

firefly-iii is vulnerable to Unrestricted Upload of File with Dangerous Type

MEDIUM CVSS 6.3 Published Oct 19, 2021

CVE-2021-3819

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

MEDIUM CVSS 4.3 Published Sep 27, 2021

CVE-2021-3730

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

MEDIUM CVSS 6.5 Published Aug 23, 2021

CVE-2021-3729

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

MEDIUM CVSS 4.3 Published Aug 23, 2021

CVE-2021-3728

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

MEDIUM CVSS 6.5 Published Aug 23, 2021

CVE-2021-3663

firefly-iii is vulnerable to Improper Restriction of Excessive Authentication Attempts

MEDIUM CVSS 5.3 Published Jul 25, 2021