CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

9 matches found

RedhatCVE•added 2025/05/22 3:22 p.m.•4 views

CVE-2020-25817

SilverStripe through 4.6.0-rc1 has an XXE Vulnerability in CSSContentParser. A developer utility meant for parsing HTML within unit tests can be vulnerable to XML External Entity XXE attacks. When this developer utility is misused for purposes involving external or user submitted data in custom...

4.8CVSS6.1AI score0.00348EPSS

Github Security Blog•added 2022/05/24 7:4 p.m.•16 views

SilverStripe XXE Vulnerability in CSSContentParser

SilverStripe through 4.6.0-rc1 has an XXE Vulnerability in CSSContentParser. A developer utility meant for parsing HTML within unit tests can be vulnerable to XML External Entity XXE attacks. When this developer utility is misused for purposes involving external or user submitted data in custom...

4.8CVSS6AI score0.00348EPSS

Exploits0References6Affected Software1

OSV•added 2022/05/24 7:4 p.m.•14 views

GHSA-3VJC-5X79-M9R8 SilverStripe XXE Vulnerability in CSSContentParser

SilverStripe through 4.6.0-rc1 has an XXE Vulnerability in CSSContentParser. A developer utility meant for parsing HTML within unit tests can be vulnerable to XML External Entity XXE attacks. When this developer utility is misused for purposes involving external or user submitted data in custom...

4.8CVSS5AI score0.00348EPSS

Exploits0References6

NVD•added 2021/06/08 6:15 p.m.•13 views

CVE-2020-25817

SilverStripe through 4.6.0-rc1 has an XXE Vulnerability in CSSContentParser. A developer utility meant for parsing HTML within unit tests can be vulnerable to XML External Entity XXE attacks. When this developer utility is misused for purposes involving external or user submitted data in custom...

4.8CVSS0.00348EPSS

Exploits0References4

Prion•added 2021/06/08 6:15 p.m.•11 views

Xxe

SilverStripe through 4.6.0-rc1 has an XXE Vulnerability in CSSContentParser. A developer utility meant for parsing HTML within unit tests can be vulnerable to XML External Entity XXE attacks. When this developer utility is misused for purposes involving external or user submitted data in custom...

3.5CVSS5AI score0.00348EPSS

Exploits0References4Affected Software1

Cvelist•added 2021/06/08 5:54 p.m.•10 views

CVE-2020-25817

SilverStripe through 4.6.0-rc1 has an XXE Vulnerability in CSSContentParser. A developer utility meant for parsing HTML within unit tests can be vulnerable to XML External Entity XXE attacks. When this developer utility is misused for purposes involving external or user submitted data in custom...

5.1AI score0.00348EPSS

Exploits0References4

CVE•added 2021/06/08 5:54 p.m.•61 views

CVE-2020-25817

CVE-2020-25817 affects SilverStripe 4.6.0-rc1 via an XXE vulnerability in the CSSContentParser used to parse HTML in unit tests. The issue arises from XML External Entity handling that could be exploited when external or user-submitted data is processed in custom project code, potentially leading...

4.8CVSS4.9AI score0.00348EPSS

Exploits0References4Affected Software1

Positive Technologies•added 2021/06/08 12:0 a.m.•1 views

PT-2021-11184 · Silverstripe +3 · Silverstripe +2

SilverStripe through 4.6.0-rc1 has an XXE Vulnerability in CSSContentParser. A developer utility meant for parsing HTML within unit tests can be vulnerable to XML External Entity XXE attacks. When this developer utility is misused for purposes involving external or user submitted data in custom...

4.8CVSS4.9AI score0.00348EPSS

Exploits0References12

Friends Of PHP•added 2021/06/07 10:31 p.m.•14 views

CVE-2021-25817 XXE: Vulnerability in CSSContentParser

More info at https://www.silverstripe.org/download/security-releases/cve-2021-25817...

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by