4 matches found
CVE-2021-28661
Default SilverStripe GraphQL Server aka silverstripe/graphql 3.x through 3.4.1 permission checker not inherited by query subclass...
CVE-2021-28661
creationtimestamp| type| source ---|---|--- 2021-10-07 18:33:56+00:00| seen| https://t.me/cibsecurity/30166...
CVE-2021-28661
The CVE-2021-28661 entry concerns the SilverStripe GraphQL Server (silverstripe/graphql) versions 3.x through 3.4.1, where the permission checker is not inherited by a query subclass. This is identified as a permission-related issue in the GraphQL server component, with the underlying root cause ...
CVE-2021-28661 Default GraphQL permission checker not inherited by query subclass
More info at https://www.silverstripe.org/download/security-releases/CVE-2021-28661...