{"id":"CVE-2021-43677","details":"Fluxbb v1.4.12 is affected by a Cross Site Scripting (XSS) vulnerability.","modified":"2026-04-10T04:41:08.031553Z","published":"2022-01-04T20:15:07.550Z","references":[{"type":"ADVISORY","url":"http://fluxbb.com"},{"type":"ADVISORY","url":"https://github.com/fluxbb/fluxbb"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/fluxbb/fluxbb","events":[{"introduced":"0"},{"last_affected":"81787ff4c1708f678e89f9310151572ab6b3e231"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.4.12"}]}}],"versions":["fluxbb-1.2.18","fluxbb-1.2.19","fluxbb-1.2.20","fluxbb-1.2.21","fluxbb-1.4.0","fluxbb-1.4.10","fluxbb-1.4.11","fluxbb-1.4.12","fluxbb-1.4.2","fluxbb-1.4.4","fluxbb-1.4.6","fluxbb-1.4.7","fluxbb-1.4.8","fluxbb-1.4.9"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-43677.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}