Ecosyste.ms: Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 0.7% on packagist.org
Top 2.1% downloads on packagist.org
Top 0.2% dependent packages on packagist.org
Top 0.5% dependent repos on packagist.org
Top 0.4% forks on packagist.org

packagist.org : getkirby/cms

The Kirby core

Registry - Source - Homepage - JSON
purl: pkg:composer/getkirby/cms
Keywords: cms, core, kirby, cms-framework, content-management, file-based, flat-file, flat-file-cms, headless-cms, php8
License: Other
Latest release: about 1 month ago
First release: over 5 years ago
Namespace: getkirby
Dependent packages: 223
Dependent repositories: 378
Downloads: 315,449 total
Stars: 1,208 on GitHub
Forks: 166 on GitHub
Total Commits: 5419
Committers: 70
Average commits per author: 77.414
Development Distribution Score (DDS): 0.62
More commit stats: commits.ecosyste.ms
See more repository details: repos.ecosyste.ms
Funding links: https://getkirby.com/buy
Last synced: 1 day ago

Moderate
GSA_kwCzR0hTQS0zdjZqLXYzcWMtY3hmZs4AA08K
Denial of service from unlimited password lengths
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS14N2o3LXFwN2otaHczcc0XPw
Cross-site scripting (XSS) from writer field content in the site frontend
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS00M3FxLXF3NHgtMjhmOM4AAvar
Kirby CMS vulnerable to user enumeration in the code-based login and password reset forms
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1jN3gyLTdoOHItanE0bc4AAuav
Kirby CMS 2.5.12 Cross-site Request Forgery
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1oM3cyLXFnMnItYzdtZs4AAubL
Kirby CMS 2.5.12 Cross-site Scripting
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: over 1 year ago
High
GSA_kwCzR0hTQS01bXZqLXJ2cDgtcmY0Nc4AA08N
Insufficient Session Expiration after a password change
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS1jcTU4LXI3N2MtNWpqd80XQA
Cross-site scripting (XSS) from image block content in the site frontend
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS02M2g0LXcyNWMtM3F2NM4AA5gk
Kirby vulnerable to Cross-site scripting (XSS) in the link field "Custom" type
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS1xdjR4LXYydjQtZjhwOc4AA5cm
Kirby CMS HTML injection vulnerability
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS14cnZoLXJ2YzQtNW00M84AA5fH
Kirby vulnerable to unrestricted file upload of user avatar images
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS01N2YyLThwODktNjZ4Ns4AA5fI
Kirby vulnerable to self cross-site scripting (self-XSS) in the URL field
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: 3 months ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFncDQtNXF4Ni01NDhn
Cross-site scripting (XSS) from unsanitized uploaded SVG files in Kirby
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: about 3 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJjY3gtMmdmMy04eHZ2
Kirby .dev domains and some reverse proxy setups were treated as local
Ecosystems: packagist
Packages: getkirby/cms, getkirby/panel
Source: github
Published: over 3 years ago
Moderate
GSA_kwCzR0hTQS1mcjcyLTk2NjUtdzNncs4AA5ck
Duplicate Advisory: Unrestricted file upload of user avatar images
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: 3 months ago
Withdrawn: 3 months ago
Moderate
GSA_kwCzR0hTQS13ODc5LW14ajUtYzN3Zs4AA5cj
Duplicate Advisory: Kirby vulnerable to self cross-site scripting (self-XSS) in the URL field
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: 3 months ago
Withdrawn: 3 months ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWczaDgtY2c5eC00N3F3
Kirby Panel users could upload PHP Phar archives as content files before v2.5.14 and v3.4.5
Ecosystems: packagist
Packages: getkirby/cms, getkirby/panel
Source: github
Published: over 3 years ago
High
GSA_kwCzR0hTQS14NW1yLXA2djQtd3A5M84AA08O
Field injection in the KirbyData text storage handler
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS1xMzg2LXc2ZmctZ21ncM4AA08M
XML External Entity (XXE) vulnerability in the XML data handler
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS1jMjdqLTc2eGctNng0Zs4AAvas
Kirby CMS vulnerable to user enumeration in the brute force protection
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS0yNzVjLXYzcmMteGdoeM4AATSi
Kirby XSS Vulnerability
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS04ZnY3LXdxMzgtZjVjOc4AA08L
Cross-site scripting (XSS) from MIME type auto-detection of uploaded files
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: 10 months ago
High
GSA_kwCzR0hTQS1ydjNyLXZxamotOGM3Ns4AAui4
Cross-site scripting from content entered in the tags and multiselect fields
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS0zZjg5LTg2OWYtNXc3Ns4AAug3
Cross-site scripting from dynamic options in the multiselect field
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: over 1 year ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJmMnctMzQ5eC12cnFt
Cross-site scripting (XSS) from field and configuration text displayed in the Panel
Ecosystems: packagist
Packages: getkirby/cms
Source: github
Published: almost 3 years ago