Known vulnerabilities in James Cole Firefly III

Vendor: James Cole
Website: https://github.com/firefly-iii
Total Security Bulletins: 15

Security bulletins (15)

Secuity bulletin Severity Status Published
SB2024061943: MFA bypass in Firefly III Low
Patched
19.06.2024
SB2023122624: HTML injection in Firefly III Low
Patched
26.12.2023
SB2021112604: Cross-site request forgery in firefly-iii Low
Patched
26.11.2021
SB2021101102: Multiple vulnerabilities in Firefly III High
Patched
11.10.2021
SB2021092709: Cross-site request forgery in Firefly III Low
Patched
27.09.2021
SB2021092005: Multiple vulnerabilities in Firefly III Medium
Patched
20.09.2021
SB2021072604: Improper Restriction of Excessive Authentication Attempts in Firefly III Medium
Patched
26.07.2021
SB2019080506: Stored cross-site scripting in Firefly III Low
Patched
05.08.2019
SB2019080507: Stored cross-site scripting in Firefly III Low
Patched
05.08.2019
SB2019080508: Stored cross-site scripting in Firefly III Low
Patched
05.08.2019
SB2019080509: Information disclosure in Firefly III Medium
Patched
05.08.2019
SB2019080510: Stored cross-site scripting in Firefly III Low
Patched
05.08.2019
SB2019080534: Cross-site scipting in Firefly III Low
Patched
05.08.2019
SB2019071809: XSS in Firefly III Medium
Patched
18.07.2019
SB2019071601: Multiple vulnerabilities in Firefly III Low
Patched
16.07.2019