CVE-2024-26483 | Kirby CMS 4.1.0 Profile Image Module unrestricted upload

Posted by Angelo Barbosa | Feb 22, 2024 | CVE

A vulnerability, which was classified as critical, was found in Kirby CMS 4.1.0. This affects an unknown part of the component Profile Image Module. The manipulation leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2024-26483. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2024-26483 | Kirby CMS 4.1.0 Profile Image Module unrestricted upload

Related Posts

CVE-2023-25699 | VideoWhisper Live Streaming Integration Plugin up to 5.5.15 on WordPress os command injection

CVE-2022-1206 | AdRotate Plugin up to 5.13.2 on WordPress Double Extension unrestricted upload

CVE-2024-7286 | SourceCodester Establishment Billing Management System 1.0 Login ajax.php username sql injection

CVE-2024-47139 | F5 BIG-IQ up to 8.2.0.0 Configuration Utility cross site scripting (K000141080)