Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-2394

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.01355EPSS
Exploits0References3
OSV
OSV
added 2024/05/22 7:3 p.m.10 views

GHSA-3MM9-2P44-RW39 Silverstripe SiteTree Creation Permission Vulnerability

A vulnerability exists in the permission validation for SiteTree object creation. By default user permissions are not validated by the SiteTree::canCreate method, unless overridden by user code or via the configuration system. This vulnerability will allow users, or unauthenticated guests, to...

7.5CVSS7.4AI score
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/05/22 7:3 p.m.14 views

Silverstripe SiteTree Creation Permission Vulnerability

A vulnerability exists in the permission validation for SiteTree object creation. By default user permissions are not validated by the SiteTree::canCreate method, unless overridden by user code or via the configuration system. This vulnerability will allow users, or unauthenticated guests, to...

7.4AI score
Exploits0References5Affected Software1
OSV
OSV
added 2022/05/24 4:47 p.m.13 views

GHSA-4J6V-3895-8G2J silverstripe restfulserver and registry modules SQL injection vulnerability

SQL injection vulnerability in silverstripe/restfulserver module 1.0.x before 1.0.9, 2.0.x before 2.0.4, and 2.1.x before 2.1.2 and silverstripe/registry module 2.1.x before 2.1.1 and 2.2.x before 2.2.1 allows attackers to execute arbitrary SQL commands...

9.8CVSS9.9AI score0.01355EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/05/24 4:47 p.m.20 views

silverstripe restfulserver and registry modules SQL injection vulnerability

SQL injection vulnerability in silverstripe/restfulserver module 1.0.x before 1.0.9, 2.0.x before 2.0.4, and 2.1.x before 2.1.2 and silverstripe/registry module 2.1.x before 2.1.1 and 2.2.x before 2.2.1 allows attackers to execute arbitrary SQL commands...

9.8CVSS8.4AI score0.01355EPSS
Exploits0References4Affected Software2
OSV
OSV
added 2019/06/11 10:29 p.m.4 views

CVE-2019-12149

SQL injection vulnerability in silverstripe/restfulserver module 1.0.x before 1.0.9, 2.0.x before 2.0.4, and 2.1.x before 2.1.2 and silverstripe/registry module 2.1.x before 2.1.1 and 2.2.x before 2.2.1 allows attackers to execute arbitrary SQL commands...

9.8CVSS7.5AI score0.01355EPSS
Exploits0References1
NVD
NVD
added 2019/06/11 10:29 p.m.23 views

CVE-2019-12149

SQL injection vulnerability in silverstripe/restfulserver module 1.0.x before 1.0.9, 2.0.x before 2.0.4, and 2.1.x before 2.1.2 and silverstripe/registry module 2.1.x before 2.1.1 and 2.2.x before 2.2.1 allows attackers to execute arbitrary SQL commands...

9.8CVSS9.9AI score0.01355EPSS
Exploits0References1
Prion
Prion
added 2019/06/11 10:29 p.m.13 views

Sql injection

SQL injection vulnerability in silverstripe/restfulserver module 1.0.x before 1.0.9, 2.0.x before 2.0.4, and 2.1.x before 2.1.2 and silverstripe/registry module 2.1.x before 2.1.1 and 2.2.x before 2.2.1 allows attackers to execute arbitrary SQL commands...

7.5CVSS9.8AI score0.01355EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2019/06/11 9:22 p.m.26 views

CVE-2019-12149

SQL injection vulnerability in silverstripe/restfulserver module 1.0.x before 1.0.9, 2.0.x before 2.0.4, and 2.1.x before 2.1.2 and silverstripe/registry module 2.1.x before 2.1.1 and 2.2.x before 2.2.1 allows attackers to execute arbitrary SQL commands...

9.9AI score0.01355EPSS
Exploits0References1
CVE
CVE
added 2019/06/11 9:22 p.m.106 views

CVE-2019-12149

The CVE-2019-12149 issue affects the silverstripe/restfulserver and silverstripe/registry modules. A SQL injection vulnerability exists due to improper input handling, allowing an attacker to execute arbitrary SQL commands. Affected versions: restfulserver 1.0.x before 1.0.9, 2.0.x before 2.0.4, ...

9.8CVSS9.8AI score0.01355EPSS
Exploits0References1Affected Software2
Friends Of PHP
Friends Of PHP
added 2019/06/11 4:34 p.m.22 views

CVE-2019-12149: Potential SQL injection in restfulserver and registry modules

More info at https://www.silverstripe.org/download/security-releases/cve-2019-12149...

9.8CVSS7.2AI score0.01355EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 2019/06/11 4:34 p.m.17 views

CVE-2019-12149: Potential SQL injection in restfulserver and registry modules

More info at https://www.silverstripe.org/download/security-releases/cve-2019-12149...

9.8CVSS7.2AI score0.01355EPSS
Exploits0Affected Software1
Rows per page
Query Builder