Filter
AND
Versions
2.3.0
20
2.3.1
20
2.3.2
20
2.3.3
20
2.3.4
20
2.3.5
19
2.4.0
18
2.3.6
17
2.3.7
15
2.4.1
15
2.3.0-rc1
13
2.3.0-rc2
13
2.3.0-rc3
13
2.3.1-rc1
13
2.3.1-rc2
13
2.3.8
13
2.4.2
13
2.3.9
12
2.4.3
12
2.3.10
7
3.0.0
6
2.4.5
5
4.3.3
5
2.3.11
4
2.4.4
4
4.0.0
4
2.0.0
3
2.0.1
3
2.0.2
3
2.1.0
3
2.1.1
3
2.2.0
3
2.2.1
3
2.2.2
3
2.2.4
3
3.6.0
3
4.5.0
3
4.6.0-rc1
3
2.3.12
2
3.0.3
2
3.1.13
2
3.2.0
2
1.0.0
1
2.4.6
1
2.5.0
1
3.1.15
1
3.2.5
1
3.4.1
1
3.4.3
1
3.5.0
1
3.5.1
1
3.5.4
1
3.5.5
1
3.6.2
1
3.7.4
1
4.4.0
1
4.8.1
1
Silverstripe silverstripeCVE-2022-24444: Hybridsessions does not expire session id on logout
6.5
First published (updated )
composer/silverstripe/frameworkCVE-2021-41559: Quadratic blowup in Convert::xml2array()
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/silverstripe/graphqlCVE-2020-26136 GraphQL doesn't honour MFA when using basic auth
6.5
First published (updated )
composer/silverstripe/graphqlCVE-2021-28661 Default GraphQL permission checker not inherited by query subclass
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/silverstripe/frameworkCVE-2019-19326: Web Cache Poisoning through HTTPRequestBuilder
5.9
First published (updated )
Silverstripe silverstripeCVE-2020-6165: Limited queries break CanViewPermissionChecker
5.3
First published (updated )
composer/silverstripe/frameworkXSS, OS Command Injection
6.1
First published (updated )
composer/silverstripe/frameworkCVE-2019-14273: Broken Access control on files
5.3
First published (updated )
composer/silverstripe/frameworkCVE-2019-12203: Session fixation in "change password" form
6.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/silverstripe/frameworkCVE-2019-12617: Access escalation for CMS users with limited access through permission cache polluti…
First published (updated )
composer/silverstripe/frameworkCVE-2019-12245: Incorrect access control vulnerability in files uploaded to protected folders
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Silverstripe silverstripeIn the CSV export feature of SilverStripe before 3.5.6, 3.6.x before 3.6.3, and 4.x before 4.0.1, it…
5.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Silverstripe silverstripeOpen redirect vulnerability in SilverStripe CMS & Framework 3.1.13 allows remote attackers to redire…
5.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.