CNNVD-202601-1413 Information

CNNVD ID

CNNVD-202601-1413

Related CVE

CVE-2026-21896

• CNNVD Published: 2026-01-08

Description (Chinese)

Kirby是Kirby开源的一套基于文件的内容管理系统（CMS）。 Kirby 5.0.0版本至5.2.1版本存在安全漏洞，该漏洞源于内容更改API缺少权限检查，可能导致未经授权的修改。

Description (English)

Kirby is a document-based content management system (CMS) for Kirby ’ s open source. There is a security loophole in versions 5.0.0 to 5.2.1 of Kirby, which arises from the lack of authority checks for content change API, which may lead to unauthorized changes.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Kirby

Published

2026-01-08

Last Modified

2026-02-24

References

https://github.com/getkirby/kirby/commit/f5ce1347b427b819bf193acf11fd0da232f7af47 https://github.com/getkirby/kirby/releases/tag/5.2.2 https://github.com/getkirby/kirby/security/advisories/GHSA-4j78-4xrm-cr2f https://access.redhat.com/security/cve/cve-2026-21896

Patch

https://getkirby.com/