6 matches found
CVE-2022-42949
Silverstripe silverstripe/subsites through 2.6.0 has Insecure Permissions...
CVE-2022-42949
Silverstripe silverstripe/subsites through 2.6.0 has Insecure Permissions...
CVE-2022-42949
Silverstripe silverstripe/subsites through 2.6.0 has Insecure Permissions...
CVE-2022-42949
Silverstripe silverstripe/subsites through 2.6.0 has Insecure Permissions...
CVE-2022-42949
The CVE-2022-42949 issue affects SilverStripe subsites up to version 2.6.0. Root cause: the subsites module can weaken edit restrictions on certain files, allowing a malicious user to edit files they should not have rights to. Impact: unauthorized edits within subsites-enabled projects; no detail...
CVE-2022-42949 - Subsite weakens file permissions
More info at https://www.silverstripe.org/download/security-releases/cve-2022-42949...