VYPR

Packagist (Composer) package

getkirby/panel

pkg:composer/getkirby/panel

Vulnerabilities (2)

  • CVE-2020-26255Dec 8, 2020
    affected < 2.5.14fixed 2.5.14

    Kirby is a CMS. In Kirby CMS (getkirby/cms) before version 3.4.5, and Kirby Panel before version 2.5.14 , an editor with full access to the Kirby Panel can upload a PHP .phar file and execute it on the server. This vulnerability is critical if you might have potential attackers i

  • CVE-2020-26253Dec 8, 2020
    affected < 2.5.14fixed 2.5.14

    Kirby is a CMS. In Kirby CMS (getkirby/cms) before version 3.3.6, and Kirby Panel before version 2.5.14 there is a vulnerability in which the admin panel may be accessed if hosted on a .dev domain. In order to protect new installations on public servers that don't have an admin a