Vulnerabilities > Getkirby > Panel

DATE CVE VULNERABILITY TITLE RISK
2020-12-08 CVE-2020-26255 Unrestricted Upload of File with Dangerous Type vulnerability in Getkirby Kirby
Kirby is a CMS.
network
low complexity
getkirby CWE-434
6.5
6.5
2020-12-08 CVE-2020-26253 Origin Validation Error vulnerability in Getkirby Kirby
Kirby is a CMS.
network
getkirby CWE-346
4.3
4.3
2017-11-13 CVE-2017-16807 Cross-site Scripting vulnerability in Getkirby Panel
A cross-site Scripting (XSS) vulnerability in Kirby Panel before 2.3.3, 2.4.x before 2.4.2, and 2.5.x before 2.5.7 exists when displaying a specially prepared SVG document that has been uploaded as a content file.
network
getkirby CWE-79
3.5
3.5