Flarum 漏洞列表
共找到 3 个与 Flarum 相关的漏洞
📅 加载漏洞趋势中...
-
CVE-2024-21641: Flarum < 1.8.5 - Open Redirect POC
Flarum is open source discussion platform software. Prior to version 1.8.5, the Flarum `/logout` route includes a redirect parameter that allows any third party to redirect users from a (trusted) domain of the Flarum installation to redirect to any link. For logged-in users, the logout must be confirmed. Guests are immediately redirected. This could be used by spammers to redirect to a web address using a trusted domain of a running Flarum installation. -
CVE-2024-21641: Flarum < 1.8.5 - Open Redirect POC
Flarum is open source discussion platform software. Prior to version 1.8.5, the Flarum `/logout` route includes a redirect parameter that allows any third party to redirect users from a (trusted) domain of the Flarum installation to redirect to any link. For logged-in users, the logout must be confirmed. Guests are immediately redirected. This could be used by spammers to redirect to a web address using a trusted domain of a running Flarum installation. -
flarum-installer: Flarum Installation Page - Exposure POC
Detects exposed Flarum installation pages which could allow unauthorized access or information disclosure.