6 matches found
CVE-2022-38148
Silverstripe silverstripe/framework through 4.11 allows SQL Injection...
CVE-2022-38148
Silverstripe silverstripe/framework through 4.11 allows SQL Injection...
CVE-2022-38148
Silverstripe silverstripe/framework through 4.11 allows SQL Injection...
CVE-2022-38148
CVE-2022-38148 affects the Silverstripe framework (up to version 4.11) and is a SQL Injection vulnerability exploitable via the GridField state. The Red Hat and OSV entries corroborate a SQL injection risk in Silverstripe CMS/GridField, with an attacker who has CMS access able to inject arbitrary...
CVE-2022-38148
Silverstripe silverstripe/framework through 4.11 allows SQL Injection...
CVE-2022-38148 - Blind SQL Injection via GridFieldSortableHeader
More info at https://www.silverstripe.org/download/security-releases/cve-2022-38148...