getkirby/kirby is vulnerable to cross-site request forgery. The vulnerability exists because delete page functionality is not properly handled which allows a remote attacker to inject and execute malicious script into the system.
CPE | Name | Operator | Version |
---|---|---|---|
getkirby/kirby | eq | 2.5.12 | |
getkirby/kirby | eq | 2.5.12 |