Search for packages
| purl | pkg:composer/silverstripe/framework@3.0.0 |
| Tags | Ghost |
| Next non-vulnerable version | 5.3.23 |
| Latest non-vulnerable version | 6.0.0-alpha1 |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2f9j-ek3x-kbc5
Aliases: CVE-2020-9311 GHSA-2pw2-qpcp-m47x |
Silverstripe CMS XSS Vulnerability In SilverStripe through 4.5, malicious users with a valid Silverstripe CMS login (usually CMS access) can craft profile information which can lead to XSS for other users through specially crafted login form URLs. |
Affected by 18 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-414d-7bfm-kud7
Aliases: CVE-2021-28661 GHSA-r7rh-g777-g5gx |
Incorrect Authorization Default SilverStripe GraphQL Server (aka silverstripe/graphql) permission checker is not inherited by query subclass. |
Affected by 40 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-4x32-t75c-u3bj
Aliases: CVE-2022-37421 GHSA-pp74-g2q5-j4jf GMS-2022-6855 |
Silverstipe CMS Stored XSS in custom meta tags A malicious content author could create a custom meta tag and execute an arbitrary JavaScript payload. This would require convincing a legitimate user to access a page and enter a custom keyboard shortcut. This requires CMS access to exploit. |
Affected by 17 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-5pkg-j4wg-7fcn
Aliases: CVE-2023-32302 GHSA-36xx-7vf6-7mv3 |
Improper Input Validation Silverstripe Framework is the MVC framework that powers Silverstripe CMS. When a new member record is created and a password is not set, an empty encrypted password is generated. As a result, if someone is aware of the existence of a member record associated with a specific email address, they can potentially attempt to log in using that empty password. Although the default member authenticator and login form require a non-empty password, alternative authentication methods might still permit a successful login with the empty password. This issue has been patched in versions 4.13.4 and 5.0.13. |
Affected by 9 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 9 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-a9qn-hsax-uke7
Aliases: SS-2015-012-1 |
URL Redirection to Untrusted Site (Open Redirect) External redirection risk in `Security?ReturnURL`. |
Affected by 62 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 62 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 75 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 69 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-cc1b-b6sm-zbcw
Aliases: GHSA-j982-5jv7-v43r |
Silverstripe Form field validation message XSS vulnerability A high level XSS risk has been identified in the encoding of validation messages in certain FormField classes. Certain fields such as the NumericField and DropdownField have been identified, but any form field which presents any invalid content as a part of its validation response will be at risk. |
Affected by 58 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 56 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-cq8a-jun5-q3hh
Aliases: SS-2015-011-1 |
Potential SQL Injection Vulnerability in silverstripe. |
Affected by 62 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 62 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 69 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 12 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-dq8q-6agw-g3d5
Aliases: SS-2015-027-1 |
Improper Input Validation `HtmlEditor` improper URL sanitisation. |
Affected by 56 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 12 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-enkd-4y44-4ueq
Aliases: CVE-2020-26138 GHSA-7mv4-4xpg-xq44 |
FormField with square brackets in field name skips validation FileField with array notation skips validation The FileField class is commonly used for file upload in custom code on a Silverstripe website. This field is designed to be used with a single file upload. PHP allows for submitting multiple values by adding square brackets to the field name. When this is done to a FileField, it will be coerced into allowing multiple files by using this notation. This is not a supported feature, though nothing is done to prevent this. In this scenario, validation such as limiting allowed extensions is not applied, and the FileField->saveInto() behaviour is not triggered. If custom controller logic is used to process the file uploads, it might implicitly rely on validation to be provided by the Form system, which is not the case. |
Affected by 23 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 23 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-fyxa-vzeq-ubeq
Aliases: CVE-2019-19326 GHSA-q9ff-3q93-fm8m |
SilverStripe Web Cache Poisoning through HTTPRequestBuilder SilverStripe through 4.4.4 allows Web Cache Poisoning through HTTPRequestBuilder. |
Affected by 18 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 27 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 26 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-gw2k-419z-t7h5
Aliases: SS-2015-014-1 |
Code Injection Vulnerability on `isDev`, `isTest` and `flush` `$_GET` validation. |
Affected by 62 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 62 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 69 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 12 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-kvfs-x2wd-p3h3
Aliases: SS-2014-015-1 |
IE requests issue IE requests not properly behaving with `rewritehashlinks`. |
Affected by 67 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 62 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 76 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 12 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-p2kq-rkh6-ayeu
Aliases: CVE-2019-5715 GHSA-wvfw-w3x6-g526 |
SilverStripe allowss Reflected SQL Injection through Form and `DataObject`. |
Affected by 29 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 28 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 36 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 37 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 37 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 37 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-pq29-qe7h-tkcp
Aliases: CVE-2019-12205 GHSA-rfvw-5848-gxc5 |
Silverstripe Flash Clipboard Reflected XSS SilverStripe versions 3.0.0 until 4.3.5 and 4.4.4 are vulnerable to Flash Clipboard Reflected XSS. Versions 4.3.5 and 4.4.4 of `silverstripe/framework` and version 1.3.5 of `silverstripe/admin` contain a fix for this issue. |
Affected by 30 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 29 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 30 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-r2k8-fccc-jfc2
Aliases: SS-2015-009-1 |
Cross-site Scripting XSS In rewritten hash links. |
Affected by 67 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 62 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 76 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 12 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-t17w-gcwe-eue4
Aliases: GHSA-qp29-wcc2-vmpc |
Silverstripe HtmlEditor embed url sanitisation "Add from URL" doesn't clearly sanitise URL server side HtmlEditorField_Toolbar has an action HtmlEditorField_Toolbar#viewfile, which gets called by the CMS when adding a media "from a URL" (i.e. via oembed). This action gets the URL to add in the GET parameter FileURL. However it doesn't do any URL sanitising server side. The current logic will pass this through to Oembed, which will probably reject most dangerous URLs, but it's possible future changes would break this. |
Affected by 56 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-ur9h-h6mw-fbdh
Aliases: SS-2015-026-1 |
Cross-site Scripting Form field validation message XSS vulnerability. |
Affected by 56 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 12 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
|
VCID-yuu2-set7-fuet
Aliases: GHSA-g4hp-pfvf-vm5w |
SilverStripe Vulnerability on 'isDev', 'isTest' and 'flush' $_GET validation When a secure token parameter is provided to a SilverStripe site (such as isDev or flush) an empty token parameter can be provided in order to bypass normal authentication parameters. For instance, http://www.mysite.com/?isDev=1&isDevtoken will force a site to dev mode. Alternatively, "flush" could also be used in succession to cause excessive load on a victim site and risk denial of service. The fix in this case is to ensure that empty tokens fail the validation check. |
Affected by 62 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 69 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||