getkirby/kirby is vulnerable to cross-site scripting. The library does not properly escape HTML special characters, allowing an attacker to inject and execute malicious javascript. test
CPE | Name | Operator | Version |
---|---|---|---|
getkirby/cms | le | 3.5.7.1 | |
getkirby/cms | le | 3.5.7.1 |