2.5.12

DATE	CVE	VULNERABILITY TITLE	RISK
2022-10-25	CVE-2022-39315	Information Exposure Through an Error Message vulnerability in Getkirby Kirby Kirby is a Content Management System. network low complexity getkirby CWE-209	5.3
2022-10-24	CVE-2022-39314	Improper Restriction of Excessive Authentication Attempts vulnerability in Getkirby Kirby Kirby is a flat-file CMS. network high complexity getkirby CWE-307	3.7
2021-07-02	CVE-2021-32735	Cross-site Scripting vulnerability in Getkirby Kirby Kirby is a content management system. network getkirby CWE-79	3.5
2021-04-27	CVE-2021-29460	Cross-site Scripting vulnerability in Getkirby Kirby Kirby is an open source CMS. network getkirby CWE-79	3.5
2020-12-08	CVE-2020-26255	Unrestricted Upload of File with Dangerous Type vulnerability in Getkirby Kirby Kirby is a CMS. network low complexity getkirby CWE-434	6.5
2020-12-08	CVE-2020-26253	Origin Validation Error vulnerability in Getkirby Kirby Kirby is a CMS. network getkirby CWE-346	4.3
2019-05-13	CVE-2018-16624	Cross-site Scripting vulnerability in Getkirby Kirby 2.5.12 panel/pages/home/edit in Kirby v2.5.12 allows XSS via the title of a new page. network getkirby CWE-79	3.5
2019-05-13	CVE-2018-16623	Cross-site Scripting vulnerability in Getkirby Kirby 2.5.12 Kirby V2.5.12 is prone to a Persistent XSS attack via the Title of the "Site options" in the admin panel dashboard dropdown. network getkirby CWE-79	3.5
2018-12-28	CVE-2018-16630	Cross-site Scripting vulnerability in Getkirby Kirby 2.5.12 Kirby v2.5.12 allows XSS by using the "site files" Add option to upload an SVG file. network getkirby CWE-79	3.5
2018-12-20	CVE-2018-16627	Injection vulnerability in Getkirby Kirby 2.5.12 panel/login in Kirby v2.5.12 allows Host header injection via the "forget password" feature. network getkirby CWE-74	5.8