CVE-2022-39314P4LOWCVSS 3.7fixed in 3.5.8.2·≥ 3.6.0, < 3.6.6.2+6 more2022-10-24
CVE-2022-39314 [LOW] CWE-307 CVE-2022-39314: Kirby is a flat-file CMS. In versions prior to 3.5.8.2, 3.6.6.2, 3.7.5.1, and 3.8.1, Kirby is subjec
Kirby is a flat-file CMS. In versions prior to 3.5.8.2, 3.6.6.2, 3.7.5.1, and 3.8.1, Kirby is subject to user enumeration due to Improper Restriction of Excessive Authentication Attempts. This vulnerability affects you only if you are using the `code` or `password-reset` auth method with the `auth.methods` option or if you have enabled the `debug` opti
nvd