Package Instance

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-42051

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-42051

reference_url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_id

4.9.0

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-11T14:40:16Z/

url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_id

5.4.0

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-11T14:40:16Z/

url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_url

https://github.com/advisories/GHSA-x68m-c7jf-2572

reference_id

GHSA-x68m-c7jf-2572

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-x68m-c7jf-2572

reference_url

https://github.com/getkirby/kirby/security/advisories/GHSA-x68m-c7jf-2572

reference_id

GHSA-x68m-c7jf-2572

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-11T14:40:16Z/

url

https://github.com/getkirby/kirby/security/advisories/GHSA-x68m-c7jf-2572

fixed_packages

url pkg:composer/getkirby/cms@4.9.0

purl pkg:composer/getkirby/cms@4.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.9.0

url pkg:composer/getkirby/cms@5.4.0

purl pkg:composer/getkirby/cms@5.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5acg-5t6t-5ybv

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@5.4.0

aliases CVE-2026-42051, GHSA-x68m-c7jf-2572

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1425-ev7t-vqfg

url

VCID-21ju-reqm-3fg5

vulnerability_id

VCID-21ju-reqm-3fg5

summary

An HTML injection vulnerability exists in the Edit Content Layout module of Kirby CMS v4.1.0. NOTE: the vendor disputes the significance of this report because some HTML formatting (such as with an H1 element) is allowed, but there is backend sanitization such that the reporter's mentioned "injecting malicious scripts" would not occur.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-26482

reference_id

reference_type

scores

value	0.00035
scoring_system	epss
scoring_elements	0.10854
published_at	2026-06-12T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10821
published_at	2026-06-14T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10795
published_at	2026-06-11T12:55:00Z

value	0.00035
scoring_system	epss
scoring_elements	0.10852
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-26482

reference_url

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-26482

reference_url

reference_id

CVE-2024-26482

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-26482

reference_url

https://github.com/advisories/GHSA-qv4x-v2v4-f8p9

reference_id

GHSA-qv4x-v2v4-f8p9

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-qv4x-v2v4-f8p9

reference_url

https://shrouded-trowel-50c.notion.site/Kirby-CMS-4-1-0-HTML-Injection-19ca19686d0a4533ab4b0c53fc977eef?pvs=4

reference_id

Kirby-CMS-4-1-0-HTML-Injection-19ca19686d0a4533ab4b0c53fc977eef?pvs=4

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-02-22T16:59:02Z/

url

https://shrouded-trowel-50c.notion.site/Kirby-CMS-4-1-0-HTML-Injection-19ca19686d0a4533ab4b0c53fc977eef?pvs=4

fixed_packages

aliases

CVE-2024-26482, GHSA-qv4x-v2v4-f8p9

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-21ju-reqm-3fg5

url VCID-4sqz-nyzx-57f5

vulnerability_id VCID-4sqz-nyzx-57f5

summary Kirby is an open-source content management system. A vulnerability in versions prior to 3.9.8.3, 3.10.1.2, and 4.7.1 affects all Kirby setups that use PHP's built-in server. Such setups are commonly only used during local development. Sites that use other server software (such as Apache, nginx or Caddy) are not affected. A missing path traversal check allowed attackers to navigate all files on the server that were accessible to the PHP process, including files outside of the Kirby installation. The vulnerable implementation delegated all existing files to PHP, including existing files outside of the document root. This leads to a different response that allows attackers to determine whether the requested file exists. Because Kirby's router only delegates such requests to PHP and does not load or execute them, contents of the files were not exposed as PHP treats requests to files outside of the document root as invalid. The problem has been patched in Kirby 3.9.8.3, Kirby 3.10.1.2, and Kirby 4.7.1. In all of the mentioned releases, the maintainers of Kirby have updated the router to check if existing static files are within the document root. Requests to files outside the document root are treated as page requests of the error page and will no longer allow to determine whether the file exists or not.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-30207

reference_id

reference_type

scores

value	0.00593
scoring_system	epss
scoring_elements	0.69839
published_at	2026-06-13T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.69836
published_at	2026-06-14T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.69734
published_at	2026-06-11T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.69824
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-30207

reference_url

reference_id

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/commit/3ebc9ad3f5adcbd4838ce60219f1c9a561231235

reference_url

reference_id

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/commit/3ebc9ad3f5adcbd4838ce60219f1c9a561231235

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-30207

reference_id

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-30207

reference_url

https://github.com/getkirby/kirby/releases/tag/3.10.1.2

reference_id

3.10.1.2

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-13T19:36:16Z/

url

https://github.com/getkirby/kirby/releases/tag/3.10.1.2

reference_url

https://github.com/getkirby/kirby/releases/tag/3.9.8.3

reference_id

3.9.8.3

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-13T19:36:16Z/

url

https://github.com/getkirby/kirby/releases/tag/3.9.8.3

reference_url

https://github.com/getkirby/kirby/releases/tag/4.7.1

reference_id

4.7.1

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-13T19:36:16Z/

url

https://github.com/getkirby/kirby/releases/tag/4.7.1

reference_url

https://github.com/advisories/GHSA-9p3p-w5jf-8xxg

reference_id

GHSA-9p3p-w5jf-8xxg

reference_type

scores

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-9p3p-w5jf-8xxg

reference_url

https://github.com/getkirby/kirby/security/advisories/GHSA-9p3p-w5jf-8xxg

reference_id

GHSA-9p3p-w5jf-8xxg

reference_type

scores

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

value	LOW
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-13T19:36:16Z/

url

https://github.com/getkirby/kirby/security/advisories/GHSA-9p3p-w5jf-8xxg

fixed_packages

url	pkg:composer/getkirby/cms@3.9.8%2B3
purl	pkg:composer/getkirby/cms@3.9.8%2B3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.9.8%252B3

url pkg:composer/getkirby/cms@3.9.8.3

purl pkg:composer/getkirby/cms@3.9.8.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.9.8.3

url pkg:composer/getkirby/cms@3.10.1.2

purl pkg:composer/getkirby/cms@3.10.1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.10.1.2

url	pkg:composer/getkirby/cms@3.10.1%2B2
purl	pkg:composer/getkirby/cms@3.10.1%2B2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.10.1%252B2

url pkg:composer/getkirby/cms@4.7.1

purl pkg:composer/getkirby/cms@4.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.7.1

url	pkg:composer/getkirby/cms@5.0.0-alpha.1
purl	pkg:composer/getkirby/cms@5.0.0-alpha.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@5.0.0-alpha.1

aliases CVE-2025-30207, GHSA-9p3p-w5jf-8xxg

risk_score 1.4

exploitability 0.5

weighted_severity 2.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4sqz-nyzx-57f5

url VCID-88cy-kbt4-4qfq

vulnerability_id VCID-88cy-kbt4-4qfq

summary Kirby is an open-source content management system. Kirby's user permissions control which user role is allowed to perform specific actions to content models in the CMS. These permissions are defined for each role in the user blueprint (`site/blueprints/users/...`). It is also possible to customize the permissions for each target model in the model blueprints (such as in `site/blueprints/pages/...`) using the `options` feature. The permissions and options together control the authorization of user actions. For pages, Kirby provides the `pages.create` and `pages.changeStatus` permissions (among others). Prior to versions 4.9.0 and 5.4.0, Kirby checked these permissions independently and only for the respective action. However the `changeStatus` permission didn't take effect on page creation. New pages are created as drafts by default and need to be published by changing the page status of an existing page draft. This is ensured when the page is created via the Kirby Panel. However the REST API allows to override the `isDraft` flag when creating a new page. This allowed authenticated attackers with the `pages.create` permission to immediately create published pages, bypassing the normal editorial workflow. The problem has been patched in Kirby 4.9.0 and Kirby 5.4.0. Kirby has added a check to the page creation rules that ensures that users without the `pages.changeStatus` permission cannot create published pages, only page drafts.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-40099

reference_id

reference_type

scores

value	0.00028
scoring_system	epss
scoring_elements	0.08381
published_at	2026-06-12T12:55:00Z

value	0.00028
scoring_system	epss
scoring_elements	0.08379
published_at	2026-06-14T12:55:00Z

value	0.00028
scoring_system	epss
scoring_elements	0.08384
published_at	2026-06-13T12:55:00Z

value	0.00028
scoring_system	epss
scoring_elements	0.08343
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-40099

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-40099

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-40099

reference_url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_id

4.9.0

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-25T01:41:45Z/

url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_id

5.4.0

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-25T01:41:45Z/

url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_url

https://github.com/advisories/GHSA-w942-j9r6-hr6r

reference_id

GHSA-w942-j9r6-hr6r

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-w942-j9r6-hr6r

reference_url

https://github.com/getkirby/kirby/security/advisories/GHSA-w942-j9r6-hr6r

reference_id

GHSA-w942-j9r6-hr6r

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-25T01:41:45Z/

url

https://github.com/getkirby/kirby/security/advisories/GHSA-w942-j9r6-hr6r

fixed_packages

url pkg:composer/getkirby/cms@4.9.0

purl pkg:composer/getkirby/cms@4.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.9.0

url	pkg:composer/getkirby/cms@5.0.0-alpha.1
purl	pkg:composer/getkirby/cms@5.0.0-alpha.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@5.0.0-alpha.1

url pkg:composer/getkirby/cms@5.4.0

purl pkg:composer/getkirby/cms@5.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5acg-5t6t-5ybv

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@5.4.0

url	pkg:composer/getkirby/cms@6.0.0-alpha.1
purl	pkg:composer/getkirby/cms@6.0.0-alpha.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@6.0.0-alpha.1

aliases CVE-2026-40099, GHSA-w942-j9r6-hr6r

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-88cy-kbt4-4qfq

url VCID-924u-ruz7-4ycw

vulnerability_id VCID-924u-ruz7-4ycw

summary Kirby is an open-source content management system. Kirby's `Xml::value()` method has special handling for `<![CDATA[ ]]>` blocks. If the input value is already valid `CDATA`, it is not escaped a second time but allowed to pass through. However, prior to versions 4.9.0 and 5.4.0, it was possible to trick this check into allowing values that only contained a valid `CDATA` block but also contained other structured data outside of the `CDATA` block. This structured data would then also be allowed to pass through, circumventing the value protection. The `Xml::value()` method is used in `Xml::tag()`, `Xml::create()` and in the `Xml` data handler (e.g. `Data::encode($string, 'xml')`). Both the vulnerable methods and the data handler are not used in the Kirby core. However they may be used in site or plugin code, e.g. to create XML strings from input data. If those generated files are passed to another implementation that assigns specific meaning to the XML schema, manipulation of this system's behavior is possible. Kirby sites that don't use XML generation in site or plugin code are not affected. The problem has been patched in Kirby 4.9.0 and Kirby 5.4.0. In all of the mentioned releases, Kirby has added additional checks that only allow unchanged `CDATA` passthrough if the entire string is made up of valid `CDATA` blocks and no structured data. This protects all uses of the method against the described vulnerability.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-32870

reference_id

reference_type

scores

value	0.00043
scoring_system	epss
scoring_elements	0.13417
published_at	2026-06-11T12:55:00Z

value	0.00043
scoring_system	epss
scoring_elements	0.1351
published_at	2026-06-14T12:55:00Z

value	0.00043
scoring_system	epss
scoring_elements	0.13534
published_at	2026-06-12T12:55:00Z

value	0.00043
scoring_system	epss
scoring_elements	0.13537
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-32870

reference_url

reference_id

reference_type

scores

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-32870

reference_url

reference_id

reference_type

scores

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-32870

reference_url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_id

4.9.0

reference_type

scores

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-24T16:29:59Z/

url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_id

5.4.0

reference_type

scores

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-24T16:29:59Z/

url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_url

https://github.com/advisories/GHSA-9wfj-c55w-j9qr

reference_id

GHSA-9wfj-c55w-j9qr

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-9wfj-c55w-j9qr

reference_url

https://github.com/getkirby/kirby/security/advisories/GHSA-9wfj-c55w-j9qr

reference_id

GHSA-9wfj-c55w-j9qr

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-24T16:29:59Z/

url

https://github.com/getkirby/kirby/security/advisories/GHSA-9wfj-c55w-j9qr

fixed_packages

url pkg:composer/getkirby/cms@4.9.0

purl pkg:composer/getkirby/cms@4.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.9.0

url	pkg:composer/getkirby/cms@5.0.0-alpha.1
purl	pkg:composer/getkirby/cms@5.0.0-alpha.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@5.0.0-alpha.1

url pkg:composer/getkirby/cms@5.4.0

purl pkg:composer/getkirby/cms@5.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5acg-5t6t-5ybv

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@5.4.0

url	pkg:composer/getkirby/cms@6.0.0-alpha.1
purl	pkg:composer/getkirby/cms@6.0.0-alpha.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@6.0.0-alpha.1

aliases CVE-2026-32870, GHSA-9wfj-c55w-j9qr

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-924u-ruz7-4ycw

url VCID-9hqx-7awz-gkgk

vulnerability_id VCID-9hqx-7awz-gkgk

summary Kirby is an open-source content management system. Kirby's user permissions control which user role is allowed to perform specific actions to content models in the CMS. These permissions are defined for each role in the user blueprint (`site/blueprints/users/...`). It is also possible to customize the permissions for each target model in the model blueprints (such as in `site/blueprints/pages/...`) using the `options` feature. The permissions and options together control the authorization of user actions. Kirby provides the `pages.create`, `files.create` and `users.create` permissions (among others). These permissions can again be set in the user blueprint and/or in the blueprint of the target model via `options`. Prior to versions 4.9.0 and 5.4.0, Kirby allowed to override the `options` during the creation of pages, files and users by injecting custom dynamic blueprint configuration into the model data. The injected `options` could include `'create' => true`, which then caused an override of the permissions and options configured by the site developer in the user and model blueprints. The problem has been patched in Kirby 4.9.0 and Kirby 5.4.0. The patched versions have updated the normalization code that is used during the creation of pages, files and users to include a filter for the `blueprint` property. This prevents the injection of dynamic blueprint configuration into the creation request.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-41325

reference_id

reference_type

scores

value	0.00041
scoring_system	epss
scoring_elements	0.12829
published_at	2026-06-11T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12915
published_at	2026-06-14T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12924
published_at	2026-06-12T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12934
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-41325

reference_url

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-41325

reference_url

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-41325

reference_url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_id

4.9.0

reference_type

scores

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-24T12:11:33Z/

url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_id

5.4.0

reference_type

scores

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-24T12:11:33Z/

url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_url

https://github.com/advisories/GHSA-6gqr-mx34-wh8r

reference_id

GHSA-6gqr-mx34-wh8r

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-6gqr-mx34-wh8r

reference_url

https://github.com/getkirby/kirby/security/advisories/GHSA-6gqr-mx34-wh8r

reference_id

GHSA-6gqr-mx34-wh8r

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-24T12:11:33Z/

url

https://github.com/getkirby/kirby/security/advisories/GHSA-6gqr-mx34-wh8r

fixed_packages

url pkg:composer/getkirby/cms@4.9.0

purl pkg:composer/getkirby/cms@4.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.9.0

url pkg:composer/getkirby/cms@5.4.0

purl pkg:composer/getkirby/cms@5.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5acg-5t6t-5ybv

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@5.4.0

aliases CVE-2026-41325, GHSA-6gqr-mx34-wh8r

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9hqx-7awz-gkgk

url VCID-apwy-kpv6-1bfv

vulnerability_id VCID-apwy-kpv6-1bfv

summary Kirby is an open-source content management system. Prior to versions 4.9.0 and 5.4.0, Kirby's user permissions control which user role is allowed to perform specific actions to content models in the CMS. These permissions are defined for each role in the user blueprint (`site/blueprints/users/...`). It is also possible to customize the permissions for each target model in the model blueprints (such as in `site/blueprints/pages/...`) using the `options` feature. The permissions and options together control the authorization of user actions. For pages, Kirby provides the `pages.create` and `pages.changeStatus` permissions (among others). In affected releases, Kirby checked these permissions independently and only for the respective action. However the `changeStatus` permission didn't take effect on page creation. New pages are created as drafts by default and need to be published by changing the page status of an existing page draft. This is ensured when the page is created via the Kirby Panel. However the REST API allows to override the `isDraft` flag when creating a new page. This allowed authenticated attackers with the `pages.create` permission to immediately create published pages, bypassing the normal editorial workflow. The problem has been patched in Kirby 4.9.0 and Kirby 5.4.0. Kirby has updated the `Options` logic to no longer double-resolve queries in option values coming from `OptionsQuery` or `OptionsApi` sources. Kirby now only resolves queries that are directly configured in the blueprints.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-34587

reference_id

reference_type

scores

value	0.00033
scoring_system	epss
scoring_elements	0.10312
published_at	2026-06-13T12:55:00Z

value	0.00033
scoring_system	epss
scoring_elements	0.1029
published_at	2026-06-14T12:55:00Z

value	0.00033
scoring_system	epss
scoring_elements	0.10257
published_at	2026-06-11T12:55:00Z

value	0.00033
scoring_system	epss
scoring_elements	0.10307
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-34587

reference_url

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	7.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-34587

reference_url

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	7.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-34587

reference_url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_id

4.9.0

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	7.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T17:10:14Z/

url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_id

5.4.0

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	7.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T17:10:14Z/

url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_url

https://github.com/advisories/GHSA-jcjw-58rv-c452

reference_id

GHSA-jcjw-58rv-c452

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-jcjw-58rv-c452

reference_url

https://github.com/getkirby/kirby/security/advisories/GHSA-jcjw-58rv-c452

reference_id

GHSA-jcjw-58rv-c452

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	7.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T17:10:14Z/

url

https://github.com/getkirby/kirby/security/advisories/GHSA-jcjw-58rv-c452

fixed_packages

url pkg:composer/getkirby/cms@4.9.0

purl pkg:composer/getkirby/cms@4.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.9.0

url	pkg:composer/getkirby/cms@5.0.0-alpha.1
purl	pkg:composer/getkirby/cms@5.0.0-alpha.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@5.0.0-alpha.1

url pkg:composer/getkirby/cms@5.4.0

purl pkg:composer/getkirby/cms@5.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5acg-5t6t-5ybv

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@5.4.0

url	pkg:composer/getkirby/cms@6.0.0-alpha.1
purl	pkg:composer/getkirby/cms@6.0.0-alpha.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@6.0.0-alpha.1

aliases CVE-2026-34587, GHSA-jcjw-58rv-c452

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-apwy-kpv6-1bfv

url VCID-eu1n-h4bb-cbhk

vulnerability_id VCID-eu1n-h4bb-cbhk

summary Kirby is an open-source content management system. Prior to versions 4.9.0 and 5.4.0, `pages.access/list` and `files.access/list` permissions are not consistently checked in the Panel and REST API. This issue has been patched in versions 4.9.0 and 5.4.0.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-42137

reference_id

reference_type

scores

value	0.00011
scoring_system	epss
scoring_elements	0.01428
published_at	2026-06-12T12:55:00Z

value	0.00011
scoring_system	epss
scoring_elements	0.01443
published_at	2026-06-14T12:55:00Z

value	0.00011
scoring_system	epss
scoring_elements	0.01436
published_at	2026-06-13T12:55:00Z

value	0.00011
scoring_system	epss
scoring_elements	0.01424
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-42137

reference_url

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_url

reference_id

4.9.0

reference_type

scores

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-12T02:21:41Z/

url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_id

5.4.0

reference_type

scores

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-12T02:21:41Z/

url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-42137
reference_id	CVE-2026-42137
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-42137

reference_url

https://github.com/advisories/GHSA-85x2-r8xv-ww8c

reference_id

GHSA-85x2-r8xv-ww8c

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-85x2-r8xv-ww8c

reference_url

https://github.com/getkirby/kirby/security/advisories/GHSA-85x2-r8xv-ww8c

reference_id

GHSA-85x2-r8xv-ww8c

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-12T02:21:41Z/

url

https://github.com/getkirby/kirby/security/advisories/GHSA-85x2-r8xv-ww8c

fixed_packages

url pkg:composer/getkirby/cms@4.9.0

purl pkg:composer/getkirby/cms@4.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.9.0

url pkg:composer/getkirby/cms@5.4.0

purl pkg:composer/getkirby/cms@5.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5acg-5t6t-5ybv

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@5.4.0

aliases CVE-2026-42137, GHSA-85x2-r8xv-ww8c

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eu1n-h4bb-cbhk

url VCID-gwwh-p6qp-dqaq

vulnerability_id VCID-gwwh-p6qp-dqaq

summary Kirby is a CMS targeting designers and editors. Kirby allows to restrict the permissions of specific user roles. Users of that role can only perform permitted actions. Permissions for creating and deleting languages have already existed and could be configured, but were not enforced by Kirby's frontend or backend code. A permission for updating existing languages has not existed before the patched versions. So disabling the languages.* wildcard permission for a role could not have prohibited updates to existing language definitions. The missing permission checks allowed attackers with Panel access to manipulate the language definitions. The problem has been patched in Kirby 3.6.6.6, Kirby 3.7.5.5, Kirby 3.8.4.4, Kirby 3.9.8.2, Kirby 3.10.1.1, and Kirby 4.3.1. Please update to one of these or a later version to fix the vulnerability. There are no known workarounds for this vulnerability.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-41964

reference_id

reference_type

scores

value	0.00379
scoring_system	epss
scoring_elements	0.59916
published_at	2026-06-14T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59914
published_at	2026-06-12T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59806
published_at	2026-06-11T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59925
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-41964

reference_url

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/commit/1dbc9215c97a5c22dc7f34a4e3a64d19e1eac151

reference_url

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/commit/1dbc9215c97a5c22dc7f34a4e3a64d19e1eac151

reference_url

https://github.com/getkirby/kirby/commit/38636655b054e820f66c3b717c55a9d60fe6400a

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/commit/38636655b054e820f66c3b717c55a9d60fe6400a

reference_url

https://github.com/getkirby/kirby/commit/83fce501759782cf843b6f1d9293a7c7167e69af

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/commit/83fce501759782cf843b6f1d9293a7c7167e69af

reference_url

https://github.com/getkirby/kirby/commit/af9b0a58dea63effab85525ae217faa1f5ded423

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/commit/af9b0a58dea63effab85525ae217faa1f5ded423

reference_url

https://github.com/getkirby/kirby/commit/e647a177c75636ef4824662b2ce00d8e5c3a8406

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/commit/e647a177c75636ef4824662b2ce00d8e5c3a8406

reference_url

https://github.com/getkirby/kirby/releases/tag/3.10.1.1

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/releases/tag/3.10.1.1

reference_url

https://github.com/getkirby/kirby/releases/tag/3.6.6.6

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/releases/tag/3.6.6.6

reference_url

https://github.com/getkirby/kirby/releases/tag/3.7.5.5

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/releases/tag/3.7.5.5

reference_url

https://github.com/getkirby/kirby/releases/tag/3.8.4.4

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/releases/tag/3.8.4.4

reference_url

https://github.com/getkirby/kirby/releases/tag/3.9.8.2

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/releases/tag/3.9.8.2

reference_url

https://github.com/getkirby/kirby/releases/tag/4.3.1

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/releases/tag/4.3.1

reference_url

https://github.com/getkirby/kirby/commit/ab95d172667c3cd529917c2bc94d3c7969706d23

reference_id

ab95d172667c3cd529917c2bc94d3c7969706d23

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T16:35:56Z/

url

https://github.com/getkirby/kirby/commit/ab95d172667c3cd529917c2bc94d3c7969706d23

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-41964

reference_id

CVE-2024-41964

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-41964

reference_url

https://github.com/advisories/GHSA-jm9m-rqr3-wfmh

reference_id

GHSA-jm9m-rqr3-wfmh

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-jm9m-rqr3-wfmh

reference_url

https://github.com/getkirby/kirby/security/advisories/GHSA-jm9m-rqr3-wfmh

reference_id

GHSA-jm9m-rqr3-wfmh

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T16:35:56Z/

url

https://github.com/getkirby/kirby/security/advisories/GHSA-jm9m-rqr3-wfmh

fixed_packages

url pkg:composer/getkirby/cms@3.6.6.6

purl pkg:composer/getkirby/cms@3.6.6.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.6.6.6

url	pkg:composer/getkirby/cms@3.6.6%2B6
purl	pkg:composer/getkirby/cms@3.6.6%2B6
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.6.6%252B6

url pkg:composer/getkirby/cms@3.7.5.5

purl pkg:composer/getkirby/cms@3.7.5.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.7.5.5

url	pkg:composer/getkirby/cms@3.7.5%2B5
purl	pkg:composer/getkirby/cms@3.7.5%2B5
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.7.5%252B5

url pkg:composer/getkirby/cms@3.8.4.4

purl pkg:composer/getkirby/cms@3.8.4.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.8.4.4

url	pkg:composer/getkirby/cms@3.8.4%2B4
purl	pkg:composer/getkirby/cms@3.8.4%2B4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.8.4%252B4

url pkg:composer/getkirby/cms@3.9.8.2

purl pkg:composer/getkirby/cms@3.9.8.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.9.8.2

url	pkg:composer/getkirby/cms@3.9.8%2B2
purl	pkg:composer/getkirby/cms@3.9.8%2B2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.9.8%252B2

url	pkg:composer/getkirby/cms@3.10.1%2B1
purl	pkg:composer/getkirby/cms@3.10.1%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.10.1%252B1

url pkg:composer/getkirby/cms@4.0.0-alpha.1

purl pkg:composer/getkirby/cms@4.0.0-alpha.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-21ju-reqm-3fg5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-j1ph-xzap-hbeb

vulnerability	VCID-kjq6-c4eb-9qfz

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.0.0-alpha.1

url pkg:composer/getkirby/cms@4.3.1

purl pkg:composer/getkirby/cms@4.3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.3.1

url pkg:composer/getkirby/cms@4.4.0-rc.1

purl pkg:composer/getkirby/cms@4.4.0-rc.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.4.0-rc.1

aliases CVE-2024-41964, GHSA-jm9m-rqr3-wfmh

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gwwh-p6qp-dqaq

url VCID-hdkp-2m1e-yyfp

vulnerability_id VCID-hdkp-2m1e-yyfp

summary Kirby CMS v4.1.0 was discovered to contain a reflected self-XSS vulnerability via the URL parameter.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-26481

reference_id

reference_type

scores

value	0.00098
scoring_system	epss
scoring_elements	0.27151
published_at	2026-06-14T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.27148
published_at	2026-06-12T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.27166
published_at	2026-06-13T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.26944
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-26481

reference_url

reference_id

reference_type

scores

value	4.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

CVE-2024-26481

reference_type

scores

value	4.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-57f2-8p89-66x6

reference_url

reference_id

GHSA-57f2-8p89-66x6

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-57f2-8p89-66x6

reference_url

https://github.com/getkirby/kirby/security/advisories/GHSA-57f2-8p89-66x6

reference_id

GHSA-57f2-8p89-66x6

reference_type

scores

value	4.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N

value	4.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-14T19:20:43Z/

url

https://github.com/getkirby/kirby/security/advisories/GHSA-57f2-8p89-66x6

reference_url

https://shrouded-trowel-50c.notion.site/Kirby-CMS-4-1-0-Self-Cross-Site-Scripting-d877183d20af49f8a8f58554bc06d51c?pvs=4

reference_id

Kirby-CMS-4-1-0-Self-Cross-Site-Scripting-d877183d20af49f8a8f58554bc06d51c?pvs=4

reference_type

scores

value	4.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N

value	4.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-14T19:20:43Z/

url

https://shrouded-trowel-50c.notion.site/Kirby-CMS-4-1-0-Self-Cross-Site-Scripting-d877183d20af49f8a8f58554bc06d51c?pvs=4

fixed_packages

url pkg:composer/getkirby/cms@3.6.6%2B5

purl pkg:composer/getkirby/cms@3.6.6%2B5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gwwh-p6qp-dqaq

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.6.6%252B5

url pkg:composer/getkirby/cms@3.6.6.5

purl pkg:composer/getkirby/cms@3.6.6.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.6.6.5

url pkg:composer/getkirby/cms@3.7.5%2B4

purl pkg:composer/getkirby/cms@3.7.5%2B4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gwwh-p6qp-dqaq

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.7.5%252B4

url pkg:composer/getkirby/cms@3.7.5.4

purl pkg:composer/getkirby/cms@3.7.5.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.7.5.4

url pkg:composer/getkirby/cms@3.8.4%2B3

purl pkg:composer/getkirby/cms@3.8.4%2B3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gwwh-p6qp-dqaq

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.8.4%252B3

url pkg:composer/getkirby/cms@3.8.4.3

purl pkg:composer/getkirby/cms@3.8.4.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.8.4.3

url pkg:composer/getkirby/cms@3.9.8%2B1

purl pkg:composer/getkirby/cms@3.9.8%2B1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gwwh-p6qp-dqaq

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.9.8%252B1

url pkg:composer/getkirby/cms@3.9.8.1

purl pkg:composer/getkirby/cms@3.9.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.9.8.1

url pkg:composer/getkirby/cms@3.10.0.1

purl pkg:composer/getkirby/cms@3.10.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.10.0.1

url	pkg:composer/getkirby/cms@3.10.0%2B1
purl	pkg:composer/getkirby/cms@3.10.0%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.10.0%252B1

url pkg:composer/getkirby/cms@4.1.1

purl pkg:composer/getkirby/cms@4.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.1.1

aliases CVE-2024-26481, GHSA-57f2-8p89-66x6

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hdkp-2m1e-yyfp

url VCID-j1ph-xzap-hbeb

vulnerability_id VCID-j1ph-xzap-hbeb

summary Duplicate Advisory: Unrestricted file upload of user avatar images

references

reference_url

reference_id

CVE-2024-26483

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-fr72-9665-w3gr

reference_url

reference_id

GHSA-fr72-9665-w3gr

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-fr72-9665-w3gr

reference_url

https://github.com/getkirby/kirby/security/advisories/GHSA-xrvh-rvc4-5m43

reference_id

GHSA-xrvh-rvc4-5m43

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/security/advisories/GHSA-xrvh-rvc4-5m43

fixed_packages

url pkg:composer/getkirby/cms@4.1.1

purl pkg:composer/getkirby/cms@4.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.1.1

aliases GHSA-fr72-9665-w3gr

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j1ph-xzap-hbeb

url VCID-kjq6-c4eb-9qfz

vulnerability_id VCID-kjq6-c4eb-9qfz

summary Duplicate Advisory: Kirby vulnerable to self cross-site scripting (self-XSS) in the URL field

references

reference_url

reference_id

CVE-2024-26481

reference_type

scores

value	4.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/security/advisories/GHSA-57f2-8p89-66x6

reference_url

reference_id

GHSA-57f2-8p89-66x6

reference_type

scores

value	4.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/getkirby/kirby/security/advisories/GHSA-57f2-8p89-66x6

reference_url

https://github.com/advisories/GHSA-w879-mxj5-c3wf

reference_id

GHSA-w879-mxj5-c3wf

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-w879-mxj5-c3wf

fixed_packages

url pkg:composer/getkirby/cms@4.1.1

purl pkg:composer/getkirby/cms@4.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.1.1

aliases GHSA-w879-mxj5-c3wf

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kjq6-c4eb-9qfz

url VCID-mykp-v2xy-kuh4

vulnerability_id VCID-mykp-v2xy-kuh4

summary Kirby is an open-source content management system. Prior to versions 4.9.0 and 5.4.0, read access to site, user and role information is not gated by permissions. This issue has been patched in versions 4.9.0 and 5.4.0.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-42069

reference_id

reference_type

scores

value	0.0003
scoring_system	epss
scoring_elements	0.09062
published_at	2026-06-13T12:55:00Z

value	0.0003
scoring_system	epss
scoring_elements	0.0905
published_at	2026-06-14T12:55:00Z

value	0.0003
scoring_system	epss
scoring_elements	0.0906
published_at	2026-06-12T12:55:00Z

value	0.0003
scoring_system	epss
scoring_elements	0.09011
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-42069

reference_url

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-42069

reference_url

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-42069

reference_url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_id

4.9.0

reference_type

scores

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-12T13:32:21Z/

url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_id

5.4.0

reference_type

scores

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-12T13:32:21Z/

url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_url

https://github.com/advisories/GHSA-2h7v-4372-f6x2

reference_id

GHSA-2h7v-4372-f6x2

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-2h7v-4372-f6x2

reference_url

https://github.com/getkirby/kirby/security/advisories/GHSA-2h7v-4372-f6x2

reference_id

GHSA-2h7v-4372-f6x2

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-12T13:32:21Z/

url

https://github.com/getkirby/kirby/security/advisories/GHSA-2h7v-4372-f6x2

fixed_packages

url pkg:composer/getkirby/cms@4.9.0

purl pkg:composer/getkirby/cms@4.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.9.0

url pkg:composer/getkirby/cms@5.4.0

purl pkg:composer/getkirby/cms@5.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5acg-5t6t-5ybv

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@5.4.0

aliases CVE-2026-42069, GHSA-2h7v-4372-f6x2

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mykp-v2xy-kuh4

url VCID-nc11-mjvd-kqdb

vulnerability_id VCID-nc11-mjvd-kqdb

summary An arbitrary file upload vulnerability in the Profile Image module of Kirby CMS v4.1.0 allows attackers to execute arbitrary code via a crafted PDF file.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-26483

reference_id

reference_type

scores

value	0.00157
scoring_system	epss
scoring_elements	0.36524
published_at	2026-06-12T12:55:00Z

value	0.00157
scoring_system	epss
scoring_elements	0.36537
published_at	2026-06-14T12:55:00Z

value	0.00157
scoring_system	epss
scoring_elements	0.36549
published_at	2026-06-13T12:55:00Z

value	0.00157
scoring_system	epss
scoring_elements	0.36344
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-26483

reference_url

reference_id

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

CVE-2024-26483

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-xrvh-rvc4-5m43

reference_url

reference_id

GHSA-xrvh-rvc4-5m43

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-xrvh-rvc4-5m43

reference_url

https://github.com/getkirby/kirby/security/advisories/GHSA-xrvh-rvc4-5m43

reference_id

GHSA-xrvh-rvc4-5m43

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-02-22T16:29:31Z/

url

https://github.com/getkirby/kirby/security/advisories/GHSA-xrvh-rvc4-5m43

reference_url

https://shrouded-trowel-50c.notion.site/Kirby-CMS-4-1-0-Unrestricted-File-Upload-dc60ce3132f04442b73f2dba2631fae0?pvs=4

reference_id

Kirby-CMS-4-1-0-Unrestricted-File-Upload-dc60ce3132f04442b73f2dba2631fae0?pvs=4

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-02-22T16:29:31Z/

url

https://shrouded-trowel-50c.notion.site/Kirby-CMS-4-1-0-Unrestricted-File-Upload-dc60ce3132f04442b73f2dba2631fae0?pvs=4

fixed_packages

url pkg:composer/getkirby/cms@3.6.6%2B5

purl pkg:composer/getkirby/cms@3.6.6%2B5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gwwh-p6qp-dqaq

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.6.6%252B5

url pkg:composer/getkirby/cms@3.6.6.5

purl pkg:composer/getkirby/cms@3.6.6.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.6.6.5

url pkg:composer/getkirby/cms@3.7.5%2B4

purl pkg:composer/getkirby/cms@3.7.5%2B4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gwwh-p6qp-dqaq

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.7.5%252B4

url pkg:composer/getkirby/cms@3.7.5.4

purl pkg:composer/getkirby/cms@3.7.5.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.7.5.4

url pkg:composer/getkirby/cms@3.8.4%2B3

purl pkg:composer/getkirby/cms@3.8.4%2B3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gwwh-p6qp-dqaq

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.8.4%252B3

url pkg:composer/getkirby/cms@3.8.4.3

purl pkg:composer/getkirby/cms@3.8.4.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.8.4.3

url pkg:composer/getkirby/cms@3.9.8%2B1

purl pkg:composer/getkirby/cms@3.9.8%2B1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gwwh-p6qp-dqaq

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.9.8%252B1

url pkg:composer/getkirby/cms@3.9.8.1

purl pkg:composer/getkirby/cms@3.9.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.9.8.1

url pkg:composer/getkirby/cms@3.10.0.1

purl pkg:composer/getkirby/cms@3.10.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.10.0.1

url	pkg:composer/getkirby/cms@3.10.0%2B1
purl	pkg:composer/getkirby/cms@3.10.0%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@3.10.0%252B1

url pkg:composer/getkirby/cms@4.1.1

purl pkg:composer/getkirby/cms@4.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1425-ev7t-vqfg

vulnerability	VCID-4sqz-nyzx-57f5

vulnerability	VCID-88cy-kbt4-4qfq

vulnerability	VCID-924u-ruz7-4ycw

vulnerability	VCID-9hqx-7awz-gkgk

vulnerability	VCID-apwy-kpv6-1bfv

vulnerability	VCID-eu1n-h4bb-cbhk

vulnerability	VCID-gwwh-p6qp-dqaq

vulnerability	VCID-mykp-v2xy-kuh4

vulnerability	VCID-xjxr-1fjw-63ca

vulnerability	VCID-yb1m-v3jp-5fap

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.1.1

aliases CVE-2024-26483, GHSA-xrvh-rvc4-5m43

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nc11-mjvd-kqdb

url VCID-xjxr-1fjw-63ca

vulnerability_id VCID-xjxr-1fjw-63ca

summary Kirby is an open-source content management system. Prior to versions 4.9.0 and 5.4.0, user avatar creation, replacement and deletion are not gated by user update permissions. This issue has been patched in versions 4.9.0 and 5.4.0.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-42174

reference_id

reference_type

scores

value	9e-05
scoring_system	epss
scoring_elements	0.01036
published_at	2026-06-13T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.0104
published_at	2026-06-14T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.0103
published_at	2026-06-12T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.01032
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-42174

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-42174

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-42174

reference_url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_id

4.9.0

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-11T17:41:35Z/

url

https://github.com/getkirby/kirby/releases/tag/4.9.0

reference_url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_id

5.4.0

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-11T17:41:35Z/

url

https://github.com/getkirby/kirby/releases/tag/5.4.0

reference_url

https://github.com/advisories/GHSA-39cp-6679-8xv2

reference_id

GHSA-39cp-6679-8xv2

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-39cp-6679-8xv2

reference_url

https://github.com/getkirby/kirby/security/advisories/GHSA-39cp-6679-8xv2

reference_id

GHSA-39cp-6679-8xv2

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-11T17:41:35Z/

url

https://github.com/getkirby/kirby/security/advisories/GHSA-39cp-6679-8xv2

fixed_packages

url pkg:composer/getkirby/cms@4.9.0

purl pkg:composer/getkirby/cms@4.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@4.9.0

url pkg:composer/getkirby/cms@5.4.0

purl pkg:composer/getkirby/cms@5.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5acg-5t6t-5ybv

vulnerability	VCID-jkcv-nc7m-j3dp

vulnerability	VCID-ngz6-fm9j-4ucy

vulnerability	VCID-qbq9-a8cw-5ugu

vulnerability	VCID-xz7d-pny6-gkf7

vulnerability	VCID-zuh5-yybj-h7er

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/getkirby/cms@5.4.0

aliases CVE-2026-42174, GHSA-39cp-6679-8xv2

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xjxr-1fjw-63ca

url VCID-yb1m-v3jp-5fap

vulnerability_id VCID-yb1m-v3jp-5fap

summary Kirby is an open-source content management system. A vulnerability in versions prior to 3.9.8.3, 3.10.1.2, and 4.7.1 affects all Kirby sites that use the `collection()` helper or `$kirby->collection()` method with a dynamic collection name (such as a collection name that depends on request or user data). Sites that only use fixed calls to the `collection()` helper/`$kirby->collection()` method (i.e. calls with a simple string for the collection name) are *not* affected. A missing path traversal check allowed attackers to navigate and access all files on the server that were accessible to the PHP process, including files outside of the collections root or even outside of the Kirby installation. PHP code within such files was executed. Such attacks first require an attack vector in the site code that is caused by dynamic collection names, such as `collection('tags-' . get('tags'))`. It generally also requires knowledge of the site structure and the server's file system by the attacker, although it can be possible to find vulnerable setups through automated methods such as fuzzing. In a vulnerable setup, this could cause damage to the confidentiality and integrity of the server. The problem has been patched in Kirby 3.9.8.3, Kirby 3.10.1.2, and Kirby 4.7.1. In all of the mentioned releases, the maintainers of Kirby have added a check for the collection path that ensures that the resulting path is contained within the configured collections root. Collection paths that point outside of the collections root will not be loaded.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-31493

reference_id

reference_type

scores

value	0.00771
scoring_system	epss
scoring_elements	0.73994
published_at	2026-06-11T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.74079
published_at	2026-06-14T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.74081
published_at	2026-06-13T12:55:00Z

value	0.00771
scoring_system	epss
scoring_elements	0.74067
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-31493

reference_url

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url