Vulnerabilities > Getkirby

DATE CVE VULNERABILITY TITLE RISK
2022-08-24 CVE-2018-14519 Cross-Site Request Forgery (CSRF) vulnerability in Getkirby Kirby 2.5.12
An issue was discovered in Kirby 2.5.12.
network
low complexity
getkirby CWE-352
4.3
4.3
2022-08-24 CVE-2018-14520 Cross-site Scripting vulnerability in Getkirby Kirby 2.5.12
An issue was discovered in Kirby 2.5.12.
network
low complexity
getkirby CWE-79
5.4
5.4
2022-08-18 CVE-2022-35174 Cross-site Scripting vulnerability in Getkirby Starterkit 3.7.0.2
A stored cross-site scripting (XSS) vulnerability in Kirby's Starterkit v3.7.0.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Tags field.
network
low complexity
getkirby CWE-79
5.4
5.4
2021-11-16 CVE-2021-41252 Cross-site Scripting vulnerability in Getkirby Kirby
Kirby is an open source file structured CMS ### Impact Kirby's writer field stores its formatted content as HTML code.
network
low complexity
getkirby CWE-79
5.4
5.4
2021-11-16 CVE-2021-41258 Cross-site Scripting vulnerability in Getkirby Kirby
Kirby is an open source file structured CMS.
network
low complexity
getkirby CWE-79
5.4
5.4
2021-07-02 CVE-2021-32735 Cross-site Scripting vulnerability in Getkirby Kirby
Kirby is a content management system.
network
low complexity
getkirby CWE-79
5.4
5.4
2021-04-27 CVE-2021-29460 Cross-site Scripting vulnerability in Getkirby Kirby
Kirby is an open source CMS.
network
low complexity
getkirby CWE-79
5.4
5.4
2020-12-08 CVE-2020-26255 Unrestricted Upload of File with Dangerous Type vulnerability in Getkirby Kirby and Panel
Kirby is a CMS.
network
low complexity
getkirby CWE-434
critical
 9.1
9.1
2020-12-08 CVE-2020-26253 Origin Validation Error vulnerability in Getkirby Kirby
Kirby is a CMS.
network
high complexity
getkirby CWE-346
5.9
5.9
2019-05-13 CVE-2018-16624 Cross-site Scripting vulnerability in Getkirby Kirby 2.5.12
panel/pages/home/edit in Kirby v2.5.12 allows XSS via the title of a new page.
network
low complexity
getkirby CWE-79
5.4
5.4