Flarum Framework vulnerabilities
9 known vulnerabilities affecting flarum/framework.
Total CVEs
9
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM7LOW1
Vulnerabilities
Page 1 of 1
CVE-2024-21641P4MEDIUMCVSS 4.7PoCfixed in 1.8.52024-01-05
CVE-2024-21641 [MEDIUM] CWE-601 CVE-2024-21641: Flarum is open source discussion platform software. Prior to version 1.8.5, the Flarum `/logout` rou
Flarum is open source discussion platform software. Prior to version 1.8.5, the Flarum `/logout` route includes a redirect parameter that allows any third party to redirect users from a (trusted) domain of the Flarum installation to redirect to any link. For logged-in users, the logout must be confirmed. Guests are immediately redirected. This could
ghsanvdosv
CVE-2023-40033P3HIGHCVSS 7.1fixed in 1.8.02023-08-16
CVE-2023-40033 [HIGH] CWE-918 CVE-2023-40033: Flarum is an open source forum software. Flarum is affected by a vulnerability that allows an attack
Flarum is an open source forum software. Flarum is affected by a vulnerability that allows an attacker to conduct a Blind Server-Side Request Forgery (SSRF) attack or disclose any file on the server, even with a basic user account on any Flarum forum. By uploading a file containing a URL and spoofing the MIME type, an attacker can manipulate the appli
ghsanvdosv
CVE-2025-27794P3MEDIUMCVSS 6.8fixed in 1.8.102025-03-12
CVE-2025-27794 [MEDIUM] CWE-74 CVE-2025-27794: Flarum is open-source forum software. A session hijacking vulnerability exists in versions prior to
Flarum is open-source forum software. A session hijacking vulnerability exists in versions prior to 1.8.10 when an attacker-controlled authoritative subdomain under a parent domain (e.g., `subdomain.host.com`) sets cookies scoped to the parent domain (`.host.com`). This allows session token replacement for applications hosted on sibling subdomains (e.
ghsanvdosv
CVE-2023-22488P4MEDIUMCVSS 5.4fixed in 1.6.32023-01-12
CVE-2023-22488 [MEDIUM] CWE-862 CVE-2023-22488: Flarum is a forum software for building communities. Using the notifications feature, one can read r
Flarum is a forum software for building communities. Using the notifications feature, one can read restricted/private content and bypass access checks that would be in place for such content. The notification-sending component does not check that the subject of the notification can be seen by the receiver, and proceeds to send notifications through
nvd
CVE-2023-27577P4MEDIUMCVSS 4.9fixed in 1.8.16v>= 2.0.0-beta.1, < 2.0.0-rc.12023-03-10
CVE-2023-27577 [MEDIUM] CWE-22 CVE-2023-27577: flarum is a forum software package for building communities. In versions prior to 1.7.0 an admin acc
flarum is a forum software package for building communities. In versions prior to 1.7.0 an admin account which has already been compromised by an attacker may use a vulnerability in the `LESS` parser which can be exploited to read sensitive files on the server through the use of path traversal techniques. An attacker can achieve this by providing an
nvd
CVE-2022-41938P4MEDIUMCVSS 5.4v>= 1.5.0, < 1.6.22022-11-19
CVE-2022-41938 [MEDIUM] CWE-79 CVE-2022-41938: Flarum is an open source discussion platform. Flarum's page title system allowed for page titles to
Flarum is an open source discussion platform. Flarum's page title system allowed for page titles to be converted into HTML DOM nodes when pages were rendered. The change was made after `v1.5` and was not noticed. This allowed an attacker to inject malicious HTML markup using a discussion title input, either by creating a new discussion or renaming one
nvd
CVE-2023-22487P4MEDIUMCVSS 4.3fixed in 1.6.32023-01-11
CVE-2023-22487 [MEDIUM] CWE-284 CVE-2023-22487: Flarum is a forum software for building communities. Using the mentions feature provided by the flar
Flarum is a forum software for building communities. Using the mentions feature provided by the flarum/mentions extension, users can mention any post ID on the forum with the special `@""#p` syntax. The following behavior never changes no matter if the actor should be able to read the mentioned post or not: A URL to the mentioned post is inserted in
nvd
CVE-2018-19133P4MEDIUM≥ 0, ≤ 0.1.0-beta.7.12022-05-14
CVE-2018-19133 [MEDIUM] CWE-200 Flarum Core Leaks PII
Flarum Core Leaks PII
In Flarum Core 0.1.0-beta.7.1, a serious leak can get everyone's email address.
ghsaosv
CVE-2023-22489P4LOWCVSS 3.5v>= 1.3.0, < 1.6.32023-01-13
CVE-2023-22489 [LOW] CWE-862 CVE-2023-22489: Flarum is a discussion platform for websites. If the first post of a discussion is permanently delet
Flarum is a discussion platform for websites. If the first post of a discussion is permanently deleted but the discussion stays visible, any actor who can view the discussion is able to create a new reply via the REST API, no matter the reply permission or lock status. This includes users that don't have a validated email. Guests cannot successfully cr
nvd