|
|
|||
| Rule General Information |
|---|
| Release Date: | 2022-04-19 | |
| Rule Name: | Kirby CMS Authentication Bypass Path Traversal Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Kirby CMS is a flexible and easy-to-use content management system suitable for various website projects, including personal blogs, corporate websites, and e-commerce platforms. There is an identity authentication bypass path traversal vulnerability in versions 2.1.0 and earlier. The combination of cross site request forgery vulnerabilities that coexist with it may lead to remote code execution. | |
| Impact: | An attacker could exploit this vulnerability to have unspecified effect. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |