Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/15 3:17 p.m.22 views

CVE-2025-30159

Kirby is an open-source content management system. A vulnerability in versions prior to 3.9.8.3, 3.10.1.2, and 4.7.1 affects all Kirby sites that use the snippet helper or $kirby-snippet method with a dynamic snippet name such as a snippet name that depends on request or user data. Sites that onl...

9.1CVSS6.8AI score0.006EPSS
Exploits1References1
NVD
NVD
added 2025/05/13 3:15 p.m.41 views

CVE-2025-30159

Kirby is an open-source content management system. A vulnerability in versions prior to 3.9.8.3, 3.10.1.2, and 4.7.1 affects all Kirby sites that use the snippet helper or $kirby-snippet method with a dynamic snippet name such as a snippet name that depends on request or user data. Sites that onl...

9.1CVSS0.006EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/05/13 3:7 p.m.7 views

CVE-2025-30159 Kirby vulnerable to path traversal of snippet names in the `snippet()` helper

Kirby is an open-source content management system. A vulnerability in versions prior to 3.9.8.3, 3.10.1.2, and 4.7.1 affects all Kirby sites that use the snippet helper or $kirby-snippet method with a dynamic snippet name such as a snippet name that depends on request or user data. Sites that onl...

6.3CVSS6.8AI score0.006EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/05/13 3:7 p.m.41 views

CVE-2025-30159 Kirby vulnerable to path traversal of snippet names in the `snippet()` helper

Kirby is an open-source content management system. A vulnerability in versions prior to 3.9.8.3, 3.10.1.2, and 4.7.1 affects all Kirby sites that use the snippet helper or $kirby-snippet method with a dynamic snippet name such as a snippet name that depends on request or user data. Sites that onl...

6.3CVSS0.006EPSS
Exploits1References4
Rows per page
Query Builder