Lucene search

K
githubGitHub Advisory DatabaseGHSA-4H54-VWX9-3VR3
HistoryMay 23, 2024 - 3:23 p.m.

Silverstripe XSS In FormAction

2024-05-2315:23:50
CWE-79
GitHub Advisory Database
github.com
1
silverstripe
cross-site scripting
formaction
user-specified title

6.4 Medium

AI Score

Confidence

High

A cross-site scripting vulnerability has been discovered in the FormAction field where a user-specified title may be specified.

Affected configurations

Vulners
Node
silverstripeframeworkRange3.1.9
CPENameOperatorVersion
silverstripe/frameworkle3.1.9

6.4 Medium

AI Score

Confidence

High