SilverStripe is vulnerable to Unauthorized Access. The vulnerability is due to failure to restrict access via the URL parameters isDev and isTest with debugging tools intended only for development (βdev modeβ), which allows unauthenticated users to expose sensitive debugging information typically hidden in production environments, such as verbose errors and backtraces.