Vulnerabilities (CVE)

Filtered by vendor Fire.ly Subscribe
Filtered by product Spark
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-32054 1 Fire.ly 1 Spark 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Firely/Incendi Spark before 1.5.5-r4 lacks Content-Disposition headers in certain situations, which may cause crafted files to be delivered to clients such that they are rendered directly in a victim's web browser.