AI Score
Confidence
Low
EPSS
Percentile
68.9%
SQL injection vulnerability in the Folder::findOrMake method in SilverStripe 2.3.x before 2.3.12 and 2.4.x before 2.4.6 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
doc.silverstripe.org/framework/en/trunk/changelogs/2.3.12
doc.silverstripe.org/framework/en/trunk/changelogs/2.4.6
www.openwall.com/lists/oss-security/2012/04/30/1
www.openwall.com/lists/oss-security/2012/04/30/3
github.com/silverstripe/sapphire/commit/fef7c32