Silverstripe Cross-site scripting vulnerability in VersionedRequestFilter

2024-05-2319:46:36

Google

osv.dev

silverstripe

versionedrequestfilter

cross-site scripting vulnerability

cms

html injection

security vulnerability

6.3 Medium

AI Score

Confidence

High

JSON

A cross-site scripting vulnerability in VersionedRequestFilter has been found.

If an incoming user request should not be able to access the requested stage, an error message is created for display on the CMS login page that they are redirected to. In this error message, the URL of the requested page is interpolated into the error message without being escaped; hence, arbitrary HTML can be injected into the CMS login page.

CPENameOperatorVersion
silverstripe/frameworkeq3.4.1-rc2
silverstripe/frameworkeq3.3.3-rc1
silverstripe/frameworkeq3.4.0
silverstripe/frameworkeq3.4.1-rc1
silverstripe/frameworkeq3.3.2
silverstripe/frameworkeq3.3.3-rc2

Name	Operator	Version
silverstripe/framework	eq	3.4.1-rc2
silverstripe/framework	eq	3.3.3-rc1
silverstripe/framework	eq	3.4.0
silverstripe/framework	eq	3.4.1-rc1
silverstripe/framework	eq	3.3.2
silverstripe/framework	eq	3.3.3-rc2

References

github.com/FriendsOfPHP/security-advisories/blob/master/silverstripe/framework/SS-2016-007-1.yaml

github.com/silverstripe/silverstripe-framework

github.com/silverstripe/silverstripe-framework/commit/3fa84cf0c64a539d78600c36364817a8e38411d8

github.com/silverstripe/silverstripe-framework/commit/41be95c95a55031412ee4056aeee5c2c69595836

www.silverstripe.org/download/security-releases/ss-2016-007

6.3 Medium

AI Score

Confidence

High

JSON