Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-sjc3-ztkw-u7gx
Vulnerability ID VCID-sjc3-ztkw-u7gx
Aliases CVE-2020-26255
GHSA-g3h8-cg9x-47qw
Summary Unrestricted Upload of File with Dangerous Type Kirby is a CMS. In Kirby CMS (getkirby/cms) before version 3.4.5, and Kirby Panel before version 2.5.14 , an editor with full access to the Kirby Panel can upload a PHP .phar file and execute it on the server. This vulnerability is critical if you might have potential attackers in your group of authenticated Panel users, as they can gain access to the server with such a Phar file. Visitors without Panel access *cannot* use this attack vector. The problem has been patched in Kirby 2.5.14 and Kirby 3.4.5. Please update to one of these or a later version to fix the vulnerability. Note: Kirby 2 reaches end of life on December 31, 2020. We therefore recommend to upgrade your Kirby 2 sites to Kirby 3. If you cannot upgrade, we still recommend to update to Kirby 2.5.14.
Status Published
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (3)
CWE-1035 OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-434 Unrestricted Upload of File with Dangerous Type
CWE-937 OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
System Score Found at
epss 0.01108 https://api.first.org/data/v1/epss?cve=CVE-2020-26255
epss 0.01108 https://api.first.org/data/v1/epss?cve=CVE-2020-26255
epss 0.01108 https://api.first.org/data/v1/epss?cve=CVE-2020-26255
epss 0.01108 https://api.first.org/data/v1/epss?cve=CVE-2020-26255
cvssv3.1_qr MODERATE https://github.com/advisories/GHSA-g3h8-cg9x-47qw
cvssv3.1 6.8 https://github.com/getkirby/kirby
generic_textual MODERATE https://github.com/getkirby/kirby
cvssv3.1 6.8 https://github.com/getkirby/kirby/commit/db8f371b13036861c9cc5ba3e85e27f73fce5e09
generic_textual MODERATE https://github.com/getkirby/kirby/commit/db8f371b13036861c9cc5ba3e85e27f73fce5e09
cvssv3.1 6.8 https://github.com/getkirby/kirby/releases/tag/3.4.5
generic_textual MODERATE https://github.com/getkirby/kirby/releases/tag/3.4.5
cvssv3.1 6.8 https://github.com/getkirby/kirby/security/advisories/GHSA-g3h8-cg9x-47qw
cvssv3.1_qr MODERATE https://github.com/getkirby/kirby/security/advisories/GHSA-g3h8-cg9x-47qw
generic_textual MODERATE https://github.com/getkirby/kirby/security/advisories/GHSA-g3h8-cg9x-47qw
cvssv3.1 6.8 https://github.com/getkirby-v2/panel/commit/5a569d4e3ddaea2b6628d7ec1472a3e8bc410881
generic_textual MODERATE https://github.com/getkirby-v2/panel/commit/5a569d4e3ddaea2b6628d7ec1472a3e8bc410881
cvssv3.1 6.8 https://nvd.nist.gov/vuln/detail/CVE-2020-26255
generic_textual MODERATE https://nvd.nist.gov/vuln/detail/CVE-2020-26255
cvssv3.1 6.8 https://packagist.org/packages/getkirby/cms
generic_textual MODERATE https://packagist.org/packages/getkirby/cms
cvssv3.1 6.8 https://packagist.org/packages/getkirby/panel
generic_textual MODERATE https://packagist.org/packages/getkirby/panel
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2020-26255
https://github.com/getkirby/kirby
https://github.com/getkirby/kirby/commit/db8f371b13036861c9cc5ba3e85e27f73fce5e09
https://github.com/getkirby/kirby/releases/tag/3.4.5
https://github.com/getkirby-v2/panel/commit/5a569d4e3ddaea2b6628d7ec1472a3e8bc410881
https://packagist.org/packages/getkirby/cms
https://packagist.org/packages/getkirby/panel
CVE-2020-26255 https://nvd.nist.gov/vuln/detail/CVE-2020-26255
GHSA-g3h8-cg9x-47qw https://github.com/advisories/GHSA-g3h8-cg9x-47qw
GHSA-g3h8-cg9x-47qw https://github.com/getkirby/kirby/security/advisories/GHSA-g3h8-cg9x-47qw
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N Found at https://github.com/getkirby/kirby
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N Found at https://github.com/getkirby/kirby/commit/db8f371b13036861c9cc5ba3e85e27f73fce5e09
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N Found at https://github.com/getkirby/kirby/releases/tag/3.4.5
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N Found at https://github.com/getkirby/kirby/security/advisories/GHSA-g3h8-cg9x-47qw
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N Found at https://github.com/getkirby-v2/panel/commit/5a569d4e3ddaea2b6628d7ec1472a3e8bc410881
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2020-26255
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N Found at https://packagist.org/packages/getkirby/cms
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N Found at https://packagist.org/packages/getkirby/panel
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.78463
EPSS Score 0.01108
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T16:20:39.111580+00:00 GitLab Importer Import https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/getkirby/cms/CVE-2020-26255.yml 38.6.0