[MEDIUM] Kirby CMS vulnerable to user enumeration in the code-based login and password reset forms

PKSA-7256-97xt-6n1p CVE-2022-39314 GHSA-43qq-qw4x-28f8

Affected package: getkirby/cms

Affected version: =3.8.0|>=3.7.0,<3.7.5.1|>=3.6.0,<3.6.6.2|>=3.5.0,<3.5.8.2

Reported by:
GitHub