[HIGH] Kirby CMS's read access to site, user and role information is not gated by permissions

PKSA-wrgq-xy3s-q6nz CVE-2026-42069 GHSA-2h7v-4372-f6x2

Affected package: getkirby/cms

Affected version: >=5.0.0,<=5.3.3|<=4.8.0

Reported by:
GitHub