0.001 Low
EPSS
Percentile
49.7%
silverstripe/restfulserver and silverstripe/registry are vulnerable to SQL injection. A remote attacker is potentially able to inject and execute arbitrary SQL queries in the affected modules due to a lack of input validation.
www.silverstripe.org/download/security-releases/cve-2019-12149