Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.1
CVE-2020-26255
- EPSS 1.47%
- Veröffentlicht 08.12.2020 15:15:11
- Zuletzt bearbeitet 21.11.2024 05:19:40
Kirby is a CMS. In Kirby CMS (getkirby/cms) before version 3.4.5, and Kirby Panel before version 2.5.14 , an editor with full access to the Kirby Panel can upload a PHP .phar file and execute it on the server. This vulnerability is critical if you mi...
5.9
CVE-2020-26253
- EPSS 0.56%
- Veröffentlicht 08.12.2020 02:15:10
- Zuletzt bearbeitet 21.11.2024 05:19:40
Kirby is a CMS. In Kirby CMS (getkirby/cms) before version 3.3.6, and Kirby Panel before version 2.5.14 there is a vulnerability in which the admin panel may be accessed if hosted on a .dev domain. In order to protect new installations on public serv...
5.4
CVE-2017-16807
- EPSS 2.42%
- Veröffentlicht 13.11.2017 21:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
A cross-site Scripting (XSS) vulnerability in Kirby Panel before 2.3.3, 2.4.x before 2.4.2, and 2.5.x before 2.5.7 exists when displaying a specially prepared SVG document that has been uploaded as a content file.
1