{"vulnerability": "cve-2018-14520", "sightings": [{"uuid": "459ca480-fed0-4665-84a8-1178054c0277", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-14520", "type": "seen", "source": "https://t.me/cibsecurity/48688", "content": "\u203c CVE-2018-14520 \u203c\n\nAn issue was discovered in Kirby 2.5.12. The application allows malicious HTTP requests to be sent in order to trick a user into adding web pages.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-25T00:23:10.000000Z"}, {"uuid": "f818b9da-4c88-4b45-8e45-fb9a40d4ee88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-14520", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18652", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2018-14520\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue was discovered in Kirby 2.5.12. The application allows malicious HTTP requests to be sent in order to trick a user into adding web pages.\n\ud83d\udccf Published: 2022-08-24T19:43:07.000Z\n\ud83d\udccf Modified: 2025-06-17T19:19:47.407Z\n\ud83d\udd17 References:\n1. http://zaranshaikh.blogspot.com/2018/07/cross-site-request-forgery-kirby-cms.html\n2. https://www.exploit-db.com/exploits/45068", "creation_timestamp": "2025-06-17T19:39:29.000000Z"}]}