Silverstripe CSRF vulnerability in GridFieldAddExistingAutocompleter

2024-05-2319:19:33

Google

osv.dev

silverstripe

gridfield

csrf

vulnerability

security

cms

resolution

software

7.1 High

AI Score

Confidence

Low

JSON

GridField does not have sufficient CSRF protection, meaning that in some cases users with CMS access can be tricked into posting unspecified data into the CMS from external websites. Amongst other default CMS interfaces, GridField is used for management of groups, users and permissions in the CMS.

The resolution for this issue is to ensure that all gridFieldAlterAction submissions are checked for the SecurityID token during submission.

CPENameOperatorVersion
silverstripe/frameworkeq3.0.3-rc1
silverstripe/frameworkeq3.1.3
silverstripe/frameworkeq3.1.4-rc1
silverstripe/frameworkeq3.1.8
silverstripe/frameworkeq3.0.7
silverstripe/frameworkeq3.1.10
silverstripe/frameworkeq3.1.1
silverstripe/frameworkeq3.0.5
silverstripe/frameworkeq3.1.6-rc3
silverstripe/frameworkeq3.1.7-rc1

Name	Operator	Version
silverstripe/framework	eq	3.0.3-rc1
silverstripe/framework	eq	3.1.3
silverstripe/framework	eq	3.1.4-rc1
silverstripe/framework	eq	3.1.8
silverstripe/framework	eq	3.0.7
silverstripe/framework	eq	3.1.10
silverstripe/framework	eq	3.1.1
silverstripe/framework	eq	3.0.5
silverstripe/framework	eq	3.1.6-rc3
silverstripe/framework	eq	3.1.7-rc1

Rows per page:

1-10 of 781

References

github.com/FriendsOfPHP/security-advisories/blob/master/silverstripe/framework/SS-2016-002-1.yaml

github.com/silverstripe/silverstripe-framework

github.com/silverstripe/silverstripe-framework/commit/013524af5069bb0cf909853f04418d9bef56d18c

github.com/silverstripe/silverstripe-framework/commit/56e92f5a32e45849cc9361c8603c31d7010c9d36

github.com/silverstripe/silverstripe-framework/commit/e2c77c5a8f13e901c51a3684210811559b592f0c