Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-X5W2-WCR8-9Q45
HistoryMay 23, 2024 - 7:14 p.m.

Silverstripe Missing security check on dev/build/defaults

2024-05-2319:14:12
Google
osv.dev
1
silverstripe
security check
developmentadmin
live mode
login check
database state
dataobject class
modify database
attackers
modules

6.9 Medium

AI Score

Confidence

Low

JSON

The buildDefaults method on DevelopmentAdmin is missing a permission check.

In live mode, if you access /dev/build, you are requested to login first. However, if you access /dev/build/defaults, then the action is performed without any login check. This should be protected in the same way that /dev/build is.
The buildDefaults view is requireDefaultRecords() on each DataObject class, and hence has the potential to modify database state. It also lists all modified tables, allowing attackers more insight into which modules are used, and how the database tables are structured.

6.9 Medium

AI Score

Confidence

Low

JSON