2 matches found
CVE-2019-12204
CVE-2019-12204 affects SilverStripe up to version 4.3.3, where a missing warning about leaving install.php in a public webroot can lead to unauthenticated admin access. The root cause is the absence of a warning mechanism exposing admin access to unauthenticated users. Impact is described as unau...
CVE-2019-12204: Missing warning on install.php on public webroot can lead to unauthenticated admin access
More info at https://www.silverstripe.org/download/security-releases/cve-2019-12204/...