Cross-site Scripting (XSS)
silverstripe/framework is vulnerable to Cross-site Scripting XSS. The vulnerability is caused due to improper handling of key/value pairs in OptionsetField or CheckboxSetField, where default casting is not assigned. This allows an attacker to inject malicious HTML code when either key or value...