Lucene search
HistoryOct 03, 2022 - 4:21 p.m.
CVE-2010-5089
cve-2010-5089
silverstripe
access restriction
sensitive information disclosure
nvd
security vulnerability
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
64.6%
SilverStripe before 2.4.2 does not properly restrict access to pages in draft mode, which allows remote attackers to obtain sensitive information.
Affected configurations
Node
silverstripesilverstripeRange≤2.4.1
ORsilverstripesilverstripeMatch2.0.0
ORsilverstripesilverstripeMatch2.0.1
ORsilverstripesilverstripeMatch2.0.2
ORsilverstripesilverstripeMatch2.1.0
ORsilverstripesilverstripeMatch2.1.1
ORsilverstripesilverstripeMatch2.2.0
ORsilverstripesilverstripeMatch2.2.1
ORsilverstripesilverstripeMatch2.2.2
ORsilverstripesilverstripeMatch2.2.4
ORsilverstripesilverstripeMatch2.3.0
ORsilverstripesilverstripeMatch2.3.0rc1
ORsilverstripesilverstripeMatch2.3.0rc2
ORsilverstripesilverstripeMatch2.3.0rc3
ORsilverstripesilverstripeMatch2.3.1
ORsilverstripesilverstripeMatch2.3.1rc1
ORsilverstripesilverstripeMatch2.3.1rc2
ORsilverstripesilverstripeMatch2.3.2
ORsilverstripesilverstripeMatch2.3.3
ORsilverstripesilverstripeMatch2.3.4
ORsilverstripesilverstripeMatch2.3.5
ORsilverstripesilverstripeMatch2.3.6
ORsilverstripesilverstripeMatch2.3.7
ORsilverstripesilverstripeMatch2.3.8
ORsilverstripesilverstripeMatch2.3.9
ORsilverstripesilverstripeMatch2.3.10
ORsilverstripesilverstripeMatch2.4.0
Related
prion
prion
Information disclosure
2012-08-26 18:55:00
nvd
nvd
CVE-2010-5089
2012-08-26 18:55:01
cvelist
cvelist
CVE-2010-5089
2022-10-03 16:21:03
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
64.6%
Related for CVE-2010-5089