getkirby/cms is vulnerable to Information Disclosure. The vulnerability is due to Auth.php
lack of rate limiting login attempts per email address which allows an attacker to gain sensitive information of existing users.
github.com/getkirby/kirby/commit/305988e0178f3092581702c9843da7c9417a9424
github.com/getkirby/kirby/commit/a2909daf7c3dccbcfdaf1b7db2bd317f01467c98
github.com/getkirby/kirby/commit/cf0b8c7830e5c6118c3f91cd9d263e60df7f13f5
github.com/getkirby/kirby/commit/f09921189fd2b57c522296801dd8a111f504ee1c
github.com/getkirby/kirby/pull/4792
github.com/getkirby/kirby/releases/tag/3.5.8.2
github.com/getkirby/kirby/releases/tag/3.6.6.2
github.com/getkirby/kirby/releases/tag/3.7.5.1
github.com/getkirby/kirby/releases/tag/3.8.1
github.com/getkirby/kirby/security/advisories/GHSA-c27j-76xg-6x4f