4 matches found
CVE-2025-30148
Silverstripe Framework is a PHP framework which powers the Silverstripe CMS. Prior to 5.3.23, bad actor with access to edit content in the CMS could send a specifically crafted encoded payload to the server, which could be used to inject a JavaScript payload on the front end of the site. The...
CVE-2025-30148
creationtimestamp| type| source ---|---|--- 2025-04-10 15:32:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmhta5g52m2q 2025-04-10 17:52:18+00:00| seen| https://t.me/cvedetector/22666...
CVE-2025-30148
Silverstripe Framework is a PHP framework which powers the Silverstripe CMS. Prior to 5.3.23, bad actor with access to edit content in the CMS could send a specifically crafted encoded payload to the server, which could be used to inject a JavaScript payload on the front end of the site. The...
CVE-2025-30148 - XSS vulnerability in HTML editor
More info at https://www.silverstripe.org/download/security-releases/cve-2025-30148...