Flarum Friendsofflarum Pretty Mail

2 CVEs affecting Flarum Friendsofflarum Pretty Mail. Latest disclosed: 2025-12-11. Critical: 0, High: 0.

Top CVEs affecting Flarum Friendsofflarum Pretty Mail
CVESeverityScorePublishedSummary
CVE-2024-583032025-12-11FoF Pretty Mail 1.1.2 contains a server-side template injection vulnerability that allows administrative users to inject malicious code into email templates. A…
CVE-2024-583022025-12-11FoF Pretty Mail 1.1.2 contains a local file inclusion vulnerability that allows administrative users to include arbitrary server files in email templates. Atta…