209 matches found
CVE-2026-54720
Silverstripe Framework (PHP) contains an XSS vulnerability in the CMS “Insert media from web” feature, exploitable via a specially crafted embed. The issue affects versions prior to 6.2.2 and is mitigated by upgrading to 6.2.2 or later. The vulnerability stems from the media embed handling and co...
User Impersonation
Overview silverstripe/framework is a PHP framework forming the base for the SilverStripe CMS. Affected versions of this package are vulnerable to User Impersonation via insufficient validation of proxy-related HTTP headers. An attacker can spoof client IP addresses, hostnames, or protocols by...
CVE-2021-41559
Silverstripe silverstripe/framework 4.8.1 has a quadratic blowup in Convert::xml2array that enables a remote attack via a crafted XML document...
CVE-2022-38147
Silverstripe silverstripe/framework through 4.11 allows XSS issue 3 of 3...
CVE-2022-38148
Silverstripe silverstripe/framework through 4.11 allows SQL Injection...
CVE-2022-38724
Silverstripe silverstripe/framework through 4.11.0, silverstripe/assets through 1.11.0, and silverstripe/asset-admin through 1.11.0 allow XSS...
EUVD-2021-2213
Malware in sbrugna...
EUVD-2022-7451
Malicious code in bioql PyPI...
EUVD-2022-7251
Malicious code in bioql PyPI...
EUVD-2025-29363
Malicious code in bioql PyPI...
EUVD-2022-3974
Malicious code in bioql PyPI...
EUVD-2024-2294
Malicious code in bioql PyPI...
EUVD-2022-6088
Malicious code in bioql PyPI...
EUVD-2022-6007
Malicious code in bioql PyPI...
EUVD-2023-1340
Malicious code in bioql PyPI...
EUVD-2022-6019
Malicious code in bioql PyPI...
EUVD-2022-7444
Malicious code in bioql PyPI...
EUVD-2022-7415
Malicious code in bioql PyPI...
EUVD-2022-7443
Malicious code in bioql PyPI...
EUVD-2025-0082
Malicious code in bioql PyPI...