2 matches found
CVE-2023-38488
creationtimestamp| type| source ---|---|--- 2023-07-27 18:28:58+00:00| seen| https://t.me/cibsecurity/67331 2024-01-04 11:57:01+00:00| seen| https://t.me/arpsyndicate/2452 2024-09-30 01:35:11+00:00| seen| Telegram/NTlLcv-oz4zKdElMaZbxatD9Mm5lkYf5bsjT3RSnto-EhO...
CVE-2023-38488
CVE-2023-38488 is a field-injection vulnerability in Kirby’s KirbyData text storage handler. Affected versions include prior to 3.5.8.3, 3.6.6.3, 3.7.5.2, 3.8.4.1, and 3.9.6, impacting sites where authenticated Panel users or external visitors can write Kirby content files (e.g., via forms). The ...