CVE-2025-30207

EPSS 0.16%
Veröffentlicht 13.05.2025 15:20:00
Zuletzt bearbeitet 26.08.2025 14:44:44
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Kirby is an open-source content management system. A vulnerability in versions prior to 3.9.8.3, 3.10.1.2, and 4.7.1 affects all Kirby setups that use PHP's built-in server. Such setups are commonly only used during local development. Sites that use other server software (such as Apache, nginx or Caddy) are not affected. A missing path traversal check allowed attackers to navigate all files on the server that were accessible to the PHP process, including files outside of the Kirby installation. The vulnerable implementation delegated all existing files to PHP, including existing files outside of the document root. This leads to a different response that allows attackers to determine whether the requested file exists. Because Kirby's router only delegates such requests to PHP and does not load or execute them, contents of the files were not exposed as PHP treats requests to files outside of the document root as invalid. The problem has been patched in Kirby 3.9.8.3, Kirby 3.10.1.2, and Kirby 4.7.1. In all of the mentioned releases, the maintainers of Kirby have updated the router to check if existing static files are within the document root. Requests to files outside the document root are treated as page requests of the error page and will no longer allow to determine whether the file exists or not.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Getkirby ≫ Kirby Version < 3.9.8.3

Getkirby ≫ Kirby Version >= 3.10.0 < 3.10.1.2

Getkirby ≫ Kirby Version >= 4.0.0 < 4.7.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.16%	0.373

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
security-advisories@github.com	2.3	0	0	CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

CWE-23 Relative Path Traversal

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize sequences such as ".." that can resolve to a location that is outside of that directory.

https://github.com/getkirby/kirby/releases/tag/3.10.1.2

Release Notes

https://github.com/getkirby/kirby/releases/tag/3.9.8.3

Release Notes

https://github.com/getkirby/kirby/releases/tag/4.7.1

Release Notes

https://github.com/getkirby/kirby/security/advisories/GHSA-9p3p-w5jf-8xxg

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-30207

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-30207

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-30207

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-30207