VDB
CVE-2024-26482
CVE-2024-26482
PUBLISHED
CVSS 7.099999904632568 HIGH
Withdrawn Advisory: Kirby CMS HTML injection vulnerability
EPSS 0.03% · 10.8th percentile
Risk Scores
CVSS 3.1
7.099999904632568
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
EPSS Score
0.03%
10.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| getkirby | cms | 0 |
| getkirby | kirby | 4.1.0 |
| n/a | n/a | n/a |
| kirby | kirby_cms | 4.1.0 |
Exploit Intelligence
Timeline
- Feb 22, 2024 CVE Published
- Feb 22, 2024 EPSS Score
- Mar 20, 2024 EPSS Score
- Apr 16, 2024 EPSS Score
- May 12, 2024 EPSS Score
- Jun 8, 2024 EPSS Score
- Jul 5, 2024 EPSS Score
- Aug 1, 2024 EPSS Score
- Aug 28, 2024 EPSS Score
- Aug 29, 2024 CVE Updated
- Sep 23, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
References
- https://shrouded-trowel-50c.notion.site/Kirby-CMS-4-1-0-HTML-Injection-19ca19686d0a4533ab4b0c53fc977eef?pvs=4 url
- https://www.suse.com/support/update/announcement/2024/suse-su-20242575-1 advisory
- https://www.suse.com/support/update/announcement/2024/suse-su-20242585-1 advisory
- https://www.suse.com/support/update/announcement/2024/suse-su-20242571-1 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2024-26482 advisory
- https://github.com/getkirby/kirby package