AI Score
Confidence
High
EPSS
Percentile
21.4%
Firefly III before 4.7.17.3 is vulnerable to reflected XSS due to lack of filtration of user-supplied data in a search query.
github.com/firefly-iii/firefly-iii
github.com/firefly-iii/firefly-iii/commit/f795cb07e1bb9ad3bd0dceeafbb0ece4ebe518d7
github.com/firefly-iii/firefly-iii/compare/a70b7cc...7d482aa
github.com/firefly-iii/firefly-iii/issues/2339
nvd.nist.gov/vuln/detail/CVE-2019-13646