What the vulnerability does
01Description
Improper Input Validation in GitHub repository firefly-iii/firefly-iii prior to 6.0.0.
CVE-2023-1789
MEDIUM
CVE-2023-1789: Improper Input Validation in firefly-iii/firefly-iii
CVSS base score
5.2/10
CVSS vector
CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
Key dates
02Disclosure timeline
April 1, 2023
CVE published
February 11, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2024-2513 WP Chat App <= 3.6.2 - Authenticated(Contributor+) Stored Cross-Site Scripting via Block Image Attribute
CVE-2025-61916 Spinnaker vulnerable to SSRF due to improper restrictions on http from user input
CVE-2022-33719
CVE-2025-4410 SetupUtility: A buffer overflow vulnerability leads to arbitrary code execution.
CVE-2026-8516
