Vulnerabilities > CVE-2017-20174 - Unspecified vulnerability in Getkirby Webmentions

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

getkirby

critical

NVD

Published: 2023-01-19

Updated: 2024-11-21

Summary

A vulnerability was found in bastianallgeier Kirby Webmentions Plugin and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to injection. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The patch is identified as 55bedea78ae9af916a9a41497bd9996417851502. It is recommended to apply a patch to fix this issue. VDB-218894 is the identifier assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Getkirby Getkirby Webmentions -	1

References

https://github.com/bastianallgeier/kirby-webmentions/commit/55bedea78ae9af916a9a41497bd9996417851502
https://github.com/bastianallgeier/kirby-webmentions/commit/55bedea78ae9af916a9a41497bd9996417851502
https://vuldb.com/?ctiid.218894
https://vuldb.com/?ctiid.218894
https://vuldb.com/?id.218894
https://vuldb.com/?id.218894