6 matches found
CVE-2024-53277 - XSS in form messages
More info at https://www.silverstripe.org/download/security-releases/cve-2024-53277...
CVE-2022-25238: Stored XSS via HTML fields
More info at https://www.silverstripe.org/download/security-releases/cve-2022-25238...
CVE-2022-38145 - Stored XSS in Compare Mode
More info at https://www.silverstripe.org/download/security-releases/cve-2022-38145...
CVE-2020-6164: Information disclosure on /interactive URL path
More info at https://www.silverstripe.org/download/security-releases/cve-2020-6164/...
SS-2015-018: File upload exposure on UserForms module
More info at https://www.silverstripe.org/software/download/security-releases/ss-2015-018/...
SS-2015-013: X-Forwarded-Host request hostname injection
More info at https://www.silverstripe.org/software/download/security-releases/ss-2015-013/...