EUVD-2026-28804

🗓️ 08 May 2026 15:50:38Reported by EUVDType

An authenticated administrator can inject @import via LESS config vars, enabling local file read or SSRF; fixed in 1.8.16 and 2.0.0-rc.1.

Reporter	Title	Published	Views	Family All 24
ATTACKERKB	CVE-2026-41887	8 May 202615:50	–	attackerkb
Circl	CVE-2023-27577	11 Mar 202300:27	–	circl
CNNVD	Flarum 路径遍历漏洞	10 Mar 202300:00	–	cnnvd
CNNVD	Flarum 路径遍历漏洞	8 May 202600:00	–	cnnvd
CVE	CVE-2023-27577	10 Mar 202320:56	–	cve
CVE	CVE-2026-41887	8 May 202615:50	–	cve
Cvelist	CVE-2023-27577 Path Traversal Vulnerability in `LESS` Parser allows reading of sensitive server files in flarum	10 Mar 202320:56	–	cvelist
Cvelist	CVE-2026-41887 Flarum: Path traversal in LESS parser via theme color settings (incomplete fix for CVE-2023-27577)	8 May 202615:50	–	cvelist
EUVD	EUVD-2023-1112	3 Oct 202520:07	–	euvd
Github Security Blog	Path Traversal Vulnerability in `LESS` Parser allows reading of sensitive server files	13 Mar 202320:52	–	github

[
  {
    "enisaIdVendor": [
      {
        "id": "58fcf805-0670-3082-b7e3-5c12593559c3",
        "vendor": {
          "name": "flarum"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "9677c4f1-190a-3848-a379-f2efb3dd957e",
        "product": {
          "name": "framework"
        },
        "product_version": "2.0.0-beta.1, < 2.0.0-rc.1"
      },
      {
        "id": "b7f5ca04-2ea8-3cfa-8a58-fd575bfed994",
        "product": {
          "name": "framework"
        },
        "product_version": "< 1.8.16"
      }
    ]
  }
]

Source	Link
github	www.github.com/flarum/framework/security/advisories/GHSA-xjvc-pw2r-6878
github	www.github.com/flarum/framework/commit/2d90a1f19f0e46f8c7e1b07c48ba74b5e38f8410
github	www.github.com/flarum/framework/releases/tag/v1.8.16
github	www.github.com/flarum/framework/releases/tag/v2.0.0-rc.1

08 May 2026 15:50Current

6.3Medium risk

Vulners AI Score6.3

CVSS 3.14.9 - 6.6

EPSS0.00122

SSVC