Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.1
CVE-2020-26255
- EPSS 1.11%
- Veröffentlicht 08.12.2020 15:15:11
- Zuletzt bearbeitet 21.11.2024 05:19:40
Kirby is a CMS. In Kirby CMS (getkirby/cms) before version 3.4.5, and Kirby Panel before version 2.5.14 , an editor with full access to the Kirby Panel can upload a PHP .phar file and execute it on the server. This vulnerability is critical if you mi...
5.9
CVE-2020-26253
- EPSS 0.16%
- Veröffentlicht 08.12.2020 02:15:10
- Zuletzt bearbeitet 21.11.2024 05:19:40
Kirby is a CMS. In Kirby CMS (getkirby/cms) before version 3.3.6, and Kirby Panel before version 2.5.14 there is a vulnerability in which the admin panel may be accessed if hosted on a .dev domain. In order to protect new installations on public serv...
5.4
CVE-2017-16807
- EPSS 0.13%
- Veröffentlicht 13.11.2017 21:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
A cross-site Scripting (XSS) vulnerability in Kirby Panel before 2.3.3, 2.4.x before 2.4.2, and 2.5.x before 2.5.7 exists when displaying a specially prepared SVG document that has been uploaded as a content file.
1