SilverStripe 4.7.2

CPE Details

SilverStripe 4.7.2
4.7.2
2021-10-08
13h44 +00:00
2021-10-12
09h21 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:silverstripe:silverstripe:4.7.2:*:*:*:*:*:*:*

Informations

Vendor

silverstripe

Product

silverstripe

Version

4.7.2

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-37421 2022-11-22 23h00 +00:00 Silverstripe silverstripe/cms through 4.11.0 allows XSS.
5.4
Medium
CVE-2022-28803 2022-06-28 22h50 +00:00 In SilverStripe Framework through 2022-04-07, Stored XSS can occur in javascript link tags added via XMLHttpRequest (XHR).
5.4
Medium
CVE-2021-41559 2022-06-28 19h27 +00:00 Silverstripe silverstripe/framework 4.8.1 has a quadratic blowup in Convert::xml2array() that enables a remote attack via a crafted XML document.
6.5
Medium
CVE-2021-36150 2021-10-07 11h59 +00:00 SilverStripe Framework through 4.8.1 allows XSS.
6.1
Medium