2 matches found
CVE-2021-21283 XSS in Flarum Sticky extension.
Flarum is an open source discussion platform for websites. The "Flarum Sticky" extension versions 0.1.0-beta.14 and 0.1.0-beta.15 has a cross-site scripting vulnerability. A change in release beta 14 of the Sticky extension caused the plain text content of the first post of a pinned discussion to...
Flarum Sticky Cross-Site Scripting Vulnerability
Flarum is an open source forum system for the Flarum community. A cross-site scripting vulnerability exists in Flarum Sticky extension versions 0.1.0-beta.14 and 0.1.0-beta.15, which can be exploited by attackers to run javascript from other HTML attributes...