CNNVD-202511-1961 Information

CNNVD ID

CNNVD-202511-1961

Related CVE

CVE-2025-65012

• CNNVD Published: 2025-11-18

Description (Chinese)

Kirby是Kirby开源的一套基于文件的内容管理系统（CMS）。 Kirby 5.0.0版本至5.1.3版本存在跨站脚本漏洞，该漏洞源于恶意字符串修改和内容字段操作，可能导致恶意代码执行。

Description (English)

Kirby is a document-based content management system (CMS) for Kirby ’ s open source. Versions 5.0.0 to 5.1.3 of Kirby have a cross-site script loophole, which results from malicious string modifications and content field operations, which may lead to malicious code execution.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

Kirby

Published

2025-11-18

Last Modified

2026-02-24

References

https://github.com/getkirby/kirby/releases/tag/5.1.4 https://github.com/getkirby/kirby/security/advisories/GHSA-84hf-8gh5-575j https://access.redhat.com/security/cve/cve-2025-65012

Patch

https://getkirby.com/