flarum is vulnerable to cross-site scripting (XSS). The library’s page title system enables page titles to be converted into HTML DOM nodes when pages are rendered, which allows an attacker to inject malicious HTML markup using a discussion title input when a visitor opens the relevant discussion page.
CPE | Name | Operator | Version |
---|---|---|---|
flarum/core | le | v1.6.2.x-dev | |
flarum/framework | le | v1.6.1 | |
flarum/core | le | v1.6.2.x-dev | |
flarum/framework | le | v1.6.1 |
discuss.flarum.org/d/27558
github.com/flarum/flarum-core/commit/7c6dd3286510e7bcd55706a0cec5f52b67d73fdf
github.com/flarum/framework/commit/690de9ce0ffe7ac4d45b73e303f44340c3433138
github.com/flarum/framework/commit/ed0cee97f537a7ac514526ff193df68df528560e
github.com/flarum/framework/pull/3684
github.com/flarum/framework/security/advisories/GHSA-7x4w-j98p-854x