CVE-2010-5078
CVE-2010-5078 affects SilverStripe 2.3.x (before 2.3.10) and 2.4.x (before 2.4.4). The issue stores sensitive information under the web root with insufficient access control, allowing remote attackers to obtain the framework version by directly requesting (1) apphire/silverstripe_version or (2) c...