CVE ID | Publié | Description | Score | Gravité |
---|---|---|---|---|
Silverstripe silverstripe/cms through 4.11.0 allows XSS. | 5.4 |
Moyen |
||
In SilverStripe Framework through 2022-04-07, Stored XSS can occur in javascript link tags added via XMLHttpRequest (XHR). | 5.4 |
Moyen |
||
Silverstripe silverstripe/framework 4.8.1 has a quadratic blowup in Convert::xml2array() that enables a remote attack via a crafted XML document. | 6.5 |
Moyen |
||
SilverStripe Framework through 4.8.1 allows XSS. | 6.1 |
Moyen |