EPSS
Percentile
43.7%
Silverstripe silverstripe/framework 4.8.1 has a quadratic blowup in Convert::xml2array() that enables a remote attack via a crafted XML document.
github.com/silverstripe/silverstripe-framework/releases
www.silverstripe.org/download/security-releases/
www.silverstripe.org/download/security-releases/cve-2021-41559