CVE-2026-44177: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in getkirby kirby
Kirby CMS versions 5.3.0 up to but not including 5.4.1 contain a path traversal vulnerability due to improper validation of user IDs. This flaw allows attackers to include arbitrary PHP files named…
Read the full article1d agoen
Comments
Sign in to join the conversation.
No comments yet. Be the first.