Vulners
Lucene search
2 matches found
silverstripe/framework ReadOnly transformation for formfields exploitable
Form fields returning isReadonly as true are vulnerable to reflected XSS injections. This includes ReadonlyField, LookupField, HTMLReadonlyField, as well as special purpose fields like TimeFieldReadonly. Values submitted to through these form fields are not filtered out from the form session data...
6.1AI score
Exploits0References4Affected Software1
PT-2024-40216 · Silverstripe · Silverstripe
Name of the Vulnerable Software and Affected Versions: SilverStripe forms affected versions not specified Description: The issue concerns form fields in SilverStripe forms that return isReadonly as true, making them vulnerable to reflected XSS injections. This includes fields like ReadonlyField,...
6.1CVSS6.1AI score
Exploits0References5
20