Silverstripe SiteTree Creation Permission Vulnerability

2024-05-2219:03:54

CWE-863

GitHub Advisory Database

github.com

silverstripe

sitetree

permission vulnerability

validation

user permissions

database

cms access

restfulserver module

model editing

model-level permission checks

draft pages

live pages

upgrade

7.4 High

AI Score

Confidence

High

JSON

A vulnerability exists in the permission validation for SiteTree object creation. By default user permissions are not validated by the SiteTree::canCreate method, unless overridden by user code or via the configuration system.

This vulnerability will allow users, or unauthenticated guests, to create new SiteTree objects in the database. This vulnerability is present when such users are given CMS access via other means, or if there is another mechanism (such as RestfulServer module) which allows model editing and relies on model-level permission checks.

This vulnerability is restricted to the creation of draft or live pages, and does not allow users to edit, publish, or unpublish existing pages.

All users should upgrade as soon as possible.

Affected configurations

Vulners

Node

silverstripesilverstripeRange<3.1.11

silverstripesilverstripeRange≤3.0.11

CPENameOperatorVersion
silverstripe/cmslt3.1.11
silverstripe/cmsle3.0.11

CPE	Name	Operator	Version
	silverstripe/cms	lt	3.1.11
	silverstripe/cms	le	3.0.11

References

github.com/advisories/GHSA-3mm9-2p44-rw39

github.com/FriendsOfPHP/security-advisories/blob/master/silverstripe/cms/SS-2015-008-1.yaml

github.com/silverstripe/silverstripe-cms/commit/3df41e1176385215f15fffb04fcba033a5151fb4

github.com/silverstripe/silverstripe-cms/commit/64955e57d1239975183f47d3ac8c3e801ddbf122

www.silverstripe.org/software/download/security-releases/ss-2015-008-sitetree-creation-permission-vulnerability

7.4 High

AI Score

Confidence

High

JSON