3 matches found
CVE-2024-26481
creationtimestamp| type| source ---|---|--- 2024-02-22 06:26:45+00:00| seen| https://t.me/ctinow/190447 2024-02-22 06:27:01+00:00| seen| https://t.me/ctinow/190457 2024-03-13 12:36:51+00:00| seen| https://t.me/ctinow/206633...
CVE-2024-26481
CVE-2024-26481 concerns Kirby CMS v4.1.0, where a reflected self‑XSS vulnerability exists via the URL parameter. Multiple sources describe that Kirby copied the entered URL into the link target in the Panel without validating or sanitizing, enabling a malicious javascript: URL to execute in a use...
CVE-2024-26481
Kirby CMS v4.1.0 was discovered to contain a reflected self-XSS vulnerability via the URL parameter...