Filtered by vendor Silverstripe
Subscriptions
Filtered by product Silverstripe
Subscriptions
Total
64 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2021-28661 | 1 Silverstripe | 1 Silverstripe | 2024-08-03 | 4.3 Medium |
Default SilverStripe GraphQL Server (aka silverstripe/graphql) 3.x through 3.4.1 permission checker not inherited by query subclass. | ||||
CVE-2022-37421 | 1 Silverstripe | 1 Silverstripe | 2024-08-03 | 5.4 Medium |
Silverstripe silverstripe/cms through 4.11.0 allows XSS. | ||||
CVE-2022-28803 | 1 Silverstripe | 1 Silverstripe | 2024-08-03 | 5.4 Medium |
In SilverStripe Framework through 2022-04-07, Stored XSS can occur in javascript link tags added via XMLHttpRequest (XHR). | ||||
CVE-2022-24444 | 1 Silverstripe | 1 Silverstripe | 2024-08-03 | 6.5 Medium |
Silverstripe silverstripe/framework through 4.10 allows Session Fixation. |