Flatpress Security Vulnerabilities (CVEs)

Track 9 security vulnerabilities affecting Flatpress products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

1 Critical

4 High

4 Medium

Sort by:

🔔 Get Alerts for Flatpress

CVE-2025-29602 6.1

FlatPress 1.3.1 contains a cross-site scripting vulnerability in the administration panel's category management feature. This allows attackers to inje...

May 7, 2025

CVE-2024-9847 8.0

FlatPress CMS has a CSRF vulnerability that allows attackers to enable or disable plugins on behalf of authenticated users. Attackers can craft malici...

Mar 20, 2025

CVE-2024-9699 5.4

A stored Cross-Site Scripting (XSS) vulnerability in FlatPress CMS allows attackers to upload malicious files with JavaScript payloads in filenames. W...

Mar 20, 2025

CVE-2024-41290 8.1

FlatPress CMS v1.3.1 stores authentication data insecurely in cookies, potentially allowing attackers to steal session information and impersonate use...

Oct 2, 2024

CVE-2024-33209 5.4

CVE-2024-33209 is a stored XSS vulnerability in FlatPress v1.3 that allows attackers to inject malicious JavaScript into blog entries. When victims vi...

Oct 2, 2024

CVE-2024-25412 6.1

This cross-site scripting (XSS) vulnerability in Flatpress v1.3 allows attackers to inject malicious scripts into the email field, which then execute ...

Sep 27, 2024

CVE-2023-1105 8.1

This vulnerability allows attackers to control file paths in FlatPress blog software, potentially leading to arbitrary file read or write operations. ...

Mar 1, 2023

CVE-2023-0947 9.8

This CVE describes a path traversal vulnerability in FlatPress blogging software that allows attackers to read arbitrary files on the server. It affec...

Feb 22, 2023

CVE-2020-22761 8.8

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in FlatPress 1.1 that allows attackers to trick authenticated administrators into...

Jul 30, 2021

Why Monitor Flatpress Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 9+ known vulnerabilities affecting Flatpress products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Flatpress packages in under 60 seconds. No agents required - completely agentless scanning that works across Flatpress deployments.

Free vulnerability database: Access detailed information about every Flatpress CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

Register free account & add your servers
Run one-time scan or schedule automatic monitoring (every 1-24 hours)
Receive instant alerts when new Flatpress CVEs affect your systems
Access dashboard with severity breakdown & fix instructions

Start Monitoring Flatpress CVEs Free