grumpydictator/firefly-iii is vulnerable to Cross Site Scripting (XSS). The vulnerability exists when adding new currencies which allows an attacker to inject malicious HTML payloads and redirect a user to a malicious site.
CPE | Name | Operator | Version |
---|---|---|---|
grumpydictator/firefly-iii | le | 6.0.0-beta.1 | |
grumpydictator/firefly-iii | le | 6.0.0-beta.1 |