Lucene search
K

6 matches found

Github Security Blog
Github Security Blog
added 2022/05/17 5:22 a.m.16 views

Silverstripe CMS Arbitrary Code Execution

code/sitefeatures/PageCommentInterface.php in SilverStripe 2.4.x before 2.4.6 might allow remote attackers to execute arbitrary code via a crafted cookie in a user comment submission, which is not properly handled when it is deserialized...

6.8CVSS8.1AI score0.03918EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2012/09/17 5:55 p.m.16 views

Sql injection

SQL injection vulnerability in the Folder::findOrMake method in SilverStripe 2.3.x before 2.3.12 and 2.4.x before 2.4.6 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS9.1AI score0.01353EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2012/09/17 5:0 p.m.46 views

CVE-2010-4822

CVE-2010-4822 affects SilverStripe 2.4.x up to 2.4.3 (before 2.4.4). When the site runs in “live mode,” remote attackers can obtain the underlying SQL queries for a page through the showqueries and ajax parameters in core/model/MySQLDatabase.php. The issue is documented consistently across multip...

4.3CVSS7.3AI score0.01546EPSS
Exploits1References8Affected Software1
NVD
NVD
added 2012/08/26 6:55 p.m.17 views

CVE-2010-5087

SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 allows remote attackers to bypass the cross-site request forgery CSRF protection mechanism and hijack the authentication of administrators via vectors related to "form action requests" using a controller...

5CVSS6.9AI score0.02955EPSS
Exploits1References9
Prion
Prion
added 2012/08/26 6:55 p.m.19 views

Code injection

The setName function in filesystem/File.php in SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.1 allows remote authenticated users with CMS author privileges to execute arbitrary PHP code by changing the extension of an uploaded file...

6CVSS7.8AI score0.01371EPSS
Exploits1References8Affected Software1
Prion
Prion
added 2012/08/26 6:55 p.m.11 views

Session fixation

The Security/changepassword URL action in SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 passes a token as a GET parameter while changing a password through email, which allows remote attackers to obtain sensitive data and hijack the session via the HTTP referer logs on a server, aka "HT...

6.8CVSS7.2AI score0.01223EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder