getkirby Latest High & Critical Vulnerabilities

Latest High & Critical vulnerabilities published by getkirby

JSON RSS CSV 🔔 Create Alert Trigger

29 August 2024

Insufficient Permission Checks in Kirby CMS Allow Language Manipulation
CVE-2024-41964
GetkirbyKirby8.1HIGH

27 July 2023

Kirby vulnerable to field injection in the KirbyData text storage handler
CVE-2023-38488
GetkirbyKirby7.1HIGH
Kirby vulnerable to Insufficient Session Expiration after a password change
CVE-2023-38489
getkirbykirby7.3HIGH

16 November 2021

2 July 2021

Cross-site scripting (XSS) from field and configuration text displayed in the Panel
CVE-2021-32735
GetkirbyKirby7.1HIGH

27 April 2021

Cross-site scripting (XSS) from unsanitized uploaded SVG files
CVE-2021-29460
GetkirbyKirby7.6HIGH