Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
Flarum
Flarum is next-generation forum software that is simple, fast & free.
Collective -
Host: flarum-foundation -
https://opencollective.com/flarum
- Website: https://flarum.org
- Code: https://github.com/flarum
Low
Ecosystems: packagist
Packages: flarum/framework, flarum/core
Source: github
Published: 12 months ago
framework: GSA_kwCzR0hTQS03MzNyLTh4Y3Atdzltcs4AA4N5
Flarum's logout Route allows open redirectsEcosystems: packagist
Packages: flarum/framework, flarum/core
Source: github
Published: 12 months ago
High
Ecosystems: packagist
Packages: flarum/framework, flarum/core
Source: github
Published: over 1 year ago
framework: GSA_kwCzR0hTQS02N2M2LXE0ajQtaGNjZ84AA1WM
Flarum vulnerable to LFI and Blind SSRF via Avatar uploadEcosystems: packagist
Packages: flarum/framework, flarum/core
Source: github
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: flarum/core
Source: github
Published: almost 2 years ago
framework: GSA_kwCzR0hTQS12aG04LXd3cmYtM2djd84AAyE1
Path Traversal Vulnerability in `LESS` Parser allows reading of sensitive server filesEcosystems: packagist
Packages: flarum/core
Source: github
Published: almost 2 years ago
Low
Ecosystems: packagist
Packages: flarum/core
Source: github
Published: almost 2 years ago
framework: GSA_kwCzR0hTQS1ocGgzLWh2M2MtNzcyNc4AAw3b
Any Flarum user including unactivated can reply in public discussions whose first post was permanently deletedEcosystems: packagist
Packages: flarum/core
Source: github
Published: almost 2 years ago
Moderate
Ecosystems: packagist
Packages: flarum/core
Source: github
Published: almost 2 years ago
framework: GSA_kwCzR0hTQS04Z2NnLXZ3bXctcnhqNM4AAw3a
Flarum notifications can leak restricted contentEcosystems: packagist
Packages: flarum/core
Source: github
Published: almost 2 years ago
High
Ecosystems: packagist
Packages: flarum/mentions
Source: github
Published: almost 2 years ago
framework: GSA_kwCzR0hTQS0yMm05LW0zd3ctNTNoM84AAw3Z
Flarum post mentions can be used to read any post on the forum without access controlEcosystems: packagist
Packages: flarum/mentions
Source: github
Published: almost 2 years ago
Critical
Ecosystems: packagist
Packages: flarum/core
Source: github
Published: about 2 years ago
framework: GSA_kwCzR0hTQS03eDR3LWo5OHAtODU0eM4AAv_a
Cross site scripting vulnerability with discussion titlesEcosystems: packagist
Packages: flarum/core
Source: github
Published: about 2 years ago
Moderate
Ecosystems: packagist
Packages: flarum/sticky
Source: github
Published: almost 4 years ago
sticky: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgzZ2ctN3d4Mi1jcTNo
XSS in Flarum Sticky extensionEcosystems: packagist
Packages: flarum/sticky
Source: github
Published: almost 4 years ago
Moderate
Ecosystems: packagist
Packages: flarum/tags
Source: github
Published: almost 4 years ago
tags: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTMyd3gtNGd4eC1oNDhm
Users can edit the tags of any discussionEcosystems: packagist
Packages: flarum/tags
Source: github
Published: almost 4 years ago