Vulnerabilities > Getkirby
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-08-24 | CVE-2018-14519 | Cross-Site Request Forgery (CSRF) vulnerability in Getkirby Kirby 2.5.12 An issue was discovered in Kirby 2.5.12. | 4.3 |
2022-08-24 | CVE-2018-14520 | Cross-site Scripting vulnerability in Getkirby Kirby 2.5.12 An issue was discovered in Kirby 2.5.12. | 5.4 |
2022-08-18 | CVE-2022-35174 | Cross-site Scripting vulnerability in Getkirby Starterkit 3.7.0.2 A stored cross-site scripting (XSS) vulnerability in Kirby's Starterkit v3.7.0.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Tags field. | 5.4 |
2021-11-16 | CVE-2021-41252 | Unspecified vulnerability in Getkirby Kirby Kirby is an open source file structured CMS ### Impact Kirby's writer field stores its formatted content as HTML code. | 5.4 |
2021-11-16 | CVE-2021-41258 | Cross-site Scripting vulnerability in Getkirby Kirby Kirby is an open source file structured CMS. | 5.4 |
2021-07-02 | CVE-2021-32735 | Cross-site Scripting vulnerability in Getkirby Kirby Kirby is a content management system. | 5.4 |
2021-04-27 | CVE-2021-29460 | Unspecified vulnerability in Getkirby Kirby Kirby is an open source CMS. | 5.4 |
2020-12-08 | CVE-2020-26255 | Unrestricted Upload of File with Dangerous Type vulnerability in Getkirby Kirby and Panel Kirby is a CMS. | 9.1 |
2020-12-08 | CVE-2020-26253 | Origin Validation Error vulnerability in Getkirby Kirby Kirby is a CMS. | 5.9 |
2019-05-13 | CVE-2018-16624 | Cross-site Scripting vulnerability in Getkirby Kirby 2.5.12 panel/pages/home/edit in Kirby v2.5.12 allows XSS via the title of a new page. | 5.4 |