silverstripe framework 跨站脚本漏洞
silverstripe framework is a CMS website framework. silverstripe framework version 4.10.0 and prior versions contain a cross-site scripting vulnerability, which stems from the fact that tokens within the script can be added to the website content by an authenticated CMS user via XHR. An attacker...