
flarum/core
packagist · Delightfully simple forum software. · Repository · Package
Security Advisories for flarum/core in packagist
Moderate
7 months ago
Flarum Vulnerable to Session Hijacking via Authoritative Subdomain Cookie Overwrite
packagist
flarum/framework, flarum/core
Moderate
over 1 year ago
Flarum's logout Route allows open redirects
packagist
flarum/framework, flarum/core
High
about 2 years ago
Flarum vulnerable to LFI and Blind SSRF via Avatar upload
packagist
flarum/framework, flarum/core
Moderate
over 2 years ago
Path Traversal Vulnerability in `LESS` Parser allows reading of sensitive server files
packagist
flarum/core
Low
over 2 years ago
Any Flarum user including unactivated can reply in public discussions whose first post was permanently deleted
packagist
flarum/core
Critical
almost 3 years ago
Cross site scripting vulnerability with discussion titles
packagist
flarum/core