SilverStripe 4.9.0 Release Candidate 1

CPE Details

SilverStripe 4.9.0 Release Candidate 1
4.9.0
2021-10-08
13h46 +00:00
2021-10-12
09h21 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:silverstripe:silverstripe:4.9.0:rc1:*:*:*:*:*:*

Informations

Vendor

silverstripe

Product

silverstripe

Version

4.9.0

Update

rc1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-37421 2022-11-22 23h00 +00:00 Silverstripe silverstripe/cms through 4.11.0 allows XSS.
5.4
Medium
CVE-2022-28803 2022-06-28 22h50 +00:00 In SilverStripe Framework through 2022-04-07, Stored XSS can occur in javascript link tags added via XMLHttpRequest (XHR).
5.4
Medium
CVE-2021-41559 2022-06-28 19h27 +00:00 Silverstripe silverstripe/framework 4.8.1 has a quadratic blowup in Convert::xml2array() that enables a remote attack via a crafted XML document.
6.5
Medium