CVE-2013-2653

CVE-2013-2653 - Normal mode Affected software: SilverStripe 3.0.3, specifically the login form component in security/MemberLoginForm.php. Root cause: The login logic accepts credentials via a GET request, which can be logged by web server access logs, referer logs, or browser history. Impact: Rem...