CVE-2010-4822
CVE-2010-4822 affects SilverStripe 2.4.x up to 2.4.3 (before 2.4.4). When the site runs in “live mode,” remote attackers can obtain the underlying SQL queries for a page through the showqueries and ajax parameters in core/model/MySQLDatabase.php. The issue is documented consistently across multip...