Search for packages
| purl | pkg:composer/silverstripe/framework@3.1.0-beta3 |
| Next non-vulnerable version | 5.3.23 |
| Latest non-vulnerable version | 6.0.0-alpha1 |
| Risk | 3.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-112b-xdzv-auf1
Aliases: GHSA-qp29-wcc2-vmpc |
Silverstripe HtmlEditor embed url sanitisation |
Affected by 56 other vulnerabilities. |
|
VCID-16tg-w8mj-pqha
Aliases: GHSA-g43w-98wp-m694 |
SilverStripe framework XML Quadratic Blowup Attack |
Affected by 76 other vulnerabilities. |
|
VCID-1yc7-8qd2-zfhm
Aliases: GHSA-87pf-7x99-5xc4 |
Silverstripe Hostname, IP and Protocol Spoofing through HTTP Headers |
Affected by 52 other vulnerabilities. Affected by 50 other vulnerabilities. Affected by 51 other vulnerabilities. |
|
VCID-2uck-cp19-v3e9
Aliases: CVE-2022-37421 GHSA-pp74-g2q5-j4jf |
Affected by 13 other vulnerabilities. |
|
|
VCID-3497-71mw-yqh8
Aliases: CVE-2019-5715 GHSA-wvfw-w3x6-g526 |
SilverStripe allowss Reflected SQL Injection through Form and `DataObject`. |
Affected by 29 other vulnerabilities. Affected by 28 other vulnerabilities. Affected by 32 other vulnerabilities. Affected by 33 other vulnerabilities. Affected by 33 other vulnerabilities. Affected by 33 other vulnerabilities. |
|
VCID-4mg2-rjsn-qyfx
Aliases: CVE-2019-12203 GHSA-w7r7-r8r9-vrg2 |
Affected by 29 other vulnerabilities. Affected by 28 other vulnerabilities. Affected by 26 other vulnerabilities. Affected by 25 other vulnerabilities. Affected by 26 other vulnerabilities. |
|
|
VCID-4qq2-bbj1-8fdb
Aliases: GHSA-mqf3-qpc3-g26q |
Silverstripe Framework has a Reflected Cross Site Scripting (XSS) in error message > [!IMPORTANT] > This vulnerability only affects sites which are in the "dev" environment mode. If your production website is in "dev" mode, it has been misconfigured, and you should immediately swap it to "live" mode. > See https://docs.silverstripe.org/en/developer_guides/debugging/environment_types/ for more information. If a website has been set to the "dev" environment mode, a URL can be provided which includes an XSS payload which will be executed in the resulting error message. ## References - https://www.silverstripe.org/download/security-releases/ss-2024-002 ## Reported by Gaurav Nayak from [Chaleit](https://chaleit.com/) |
Affected by 2 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-5ccd-zu9e-yfgp
Aliases: CVE-2022-0227 GHSA-32m2-9f76-4gv8 |
Business Logic Errors in GitHub repository silverstripe/silverstripe-framework |
Affected by 17 other vulnerabilities. |
|
VCID-6e1y-7jj8-a7cw
Aliases: SS-2016-004 |
XSS in CMS Edit Page Due to a lack of parameter sanitisation a carefully crafted URL could be used to inject arbitrary HTML into the CMS Edit page. An attacker could create a URL and share it with a site administrator to perform an attack. |
Affected by 55 other vulnerabilities. Affected by 52 other vulnerabilities. Affected by 54 other vulnerabilities. Affected by 51 other vulnerabilities. Affected by 55 other vulnerabilities. Affected by 53 other vulnerabilities. |
|
VCID-7hs4-z65a-wffu
Aliases: GHSA-hq4p-5mpr-jj9m |
Silverstripe XSS in dev/build returnURL Parameter |
Affected by 63 other vulnerabilities. |
|
VCID-7kmy-8ht6-8fcw
Aliases: CVE-2019-12245 GHSA-jvx5-rm6q-gx7p |
Affected by 29 other vulnerabilities. Affected by 28 other vulnerabilities. Affected by 26 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 26 other vulnerabilities. |
|
|
VCID-7me4-ggep-sbhj
Aliases: SS-2016-006 |
Missing CSRF protection in login form `LoginForm` calls `disableSecurityToken()`, which causes a "shared host domain" vulnerability. |
Affected by 55 other vulnerabilities. Affected by 52 other vulnerabilities. Affected by 54 other vulnerabilities. Affected by 51 other vulnerabilities. Affected by 55 other vulnerabilities. Affected by 53 other vulnerabilities. |
|
VCID-7uum-b28k-nqbm
Aliases: SS-2016-016 |
XSS In CMSSecurity BackURL In follow up to SS-2016-001 there is yet a minor unresolved fix to incorrectly encoded URL. |
Affected by 36 other vulnerabilities. Affected by 35 other vulnerabilities. Affected by 35 other vulnerabilities. Affected by 39 other vulnerabilities. |
|
VCID-7wzc-kyxs-wbc2
Aliases: SS-2016-011 |
ChangePasswordForm doesn't check Member::canLogIn() After performing a password reset, `ChangePasswordForm::doChangePassword()` logs in the user without checking `Member::canLogIn()`. This presents an issue for sites that are using the extension point in that method to deny access to users (for example members that have not been “approved”, or members that have had their access revoked temporarily). It looks like `Member::canLogIn()` was originally designed to only be used for checking whether the user is locked out (due to too many incorrect login attempts) but has been opened up to other uses. |
Affected by 39 other vulnerabilities. Affected by 39 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 26 other vulnerabilities. |
|
VCID-89jy-34ks-5kds
Aliases: CVE-2021-28661 GHSA-r7rh-g777-g5gx |
Incorrect Authorization Default SilverStripe GraphQL Server (aka silverstripe/graphql) permission checker is not inherited by query subclass. |
Affected by 40 other vulnerabilities. |
|
VCID-8csb-m7rv-xyh2
Aliases: CVE-2021-41559 GHSA-9fmg-89fx-r33w |
Affected by 14 other vulnerabilities. Affected by 13 other vulnerabilities. |
|
|
VCID-91wy-94bg-bfc3
Aliases: SS-2017-001 |
XSS In page name SilverStripe is vulnerable to XSS via the page name. For instance, page name `"><svg/onload=alert(/xss/)>` will trigger an XSS alert. |
Affected by 37 other vulnerabilities. Affected by 42 other vulnerabilities. |
|
VCID-9qx2-tr6c-sbby
Aliases: GHSA-2hpc-mf4q-j885 |
Silverstripe CSRF vulnerability in GridFieldAddExistingAutocompleter |
Affected by 52 other vulnerabilities. Affected by 50 other vulnerabilities. Affected by 51 other vulnerabilities. |
|
VCID-9vwe-uejx-c3c5
Aliases: CVE-2019-12246 GHSA-5fr8-xhqq-4p3q |
Affected by 26 other vulnerabilities. Affected by 31 other vulnerabilities. |
|
|
VCID-a95a-ygek-hfby
Aliases: SS-2016-012 |
Missing ACL on reports The `SS_Report`, and the reports CMS section only checks `canView()` when listing the reports that can be viewed by the current user. It does not (and should) perform `canView` checks when the report is actually viewed, so if you know the URL to a report and can otherwise access the Reports section of the CMS, you can view any report. |
Affected by 40 other vulnerabilities. Affected by 39 other vulnerabilities. Affected by 39 other vulnerabilities. Affected by 43 other vulnerabilities. Affected by 26 other vulnerabilities. |
|
VCID-adng-1x6w-2baj
Aliases: CVE-2023-32302 GHSA-36xx-7vf6-7mv3 |
Improper Input Validation Silverstripe Framework is the MVC framework that powers Silverstripe CMS. When a new member record is created and a password is not set, an empty encrypted password is generated. As a result, if someone is aware of the existence of a member record associated with a specific email address, they can potentially attempt to log in using that empty password. Although the default member authenticator and login form require a non-empty password, alternative authentication methods might still permit a successful login with the empty password. This issue has been patched in versions 4.13.4 and 5.0.13. |
Affected by 9 other vulnerabilities. Affected by 9 other vulnerabilities. |
|
VCID-bexp-ws1g-1fdu
Aliases: SS-2016-008 |
Password encryption salt expiry When a user changes their password, the internal salt used for hashing their password is not updated. |
Affected by 40 other vulnerabilities. Affected by 39 other vulnerabilities. Affected by 39 other vulnerabilities. Affected by 43 other vulnerabilities. Affected by 26 other vulnerabilities. |
|
VCID-c3wv-6zpv-zbfg
Aliases: GHSA-97jm-g33h-f46g |
silverstripe/framework ReadOnly transformation for formfields exploitable |
Affected by 36 other vulnerabilities. Affected by 35 other vulnerabilities. Affected by 35 other vulnerabilities. Affected by 39 other vulnerabilities. |
|
VCID-cskj-c9ur-47dj
Aliases: CVE-2020-26136 GHSA-mg2g-8pwj-r2j2 |
Affected by 19 other vulnerabilities. |
|
|
VCID-d1ap-2u1x-y7gg
Aliases: CVE-2024-53277 GHSA-ff6q-3c9c-6cf5 |
Affected by 2 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
|
VCID-d6gt-9mst-dub4
Aliases: CVE-2024-32981 GHSA-chx7-9x8h-r5mg |
Affected by 6 other vulnerabilities. |
|
|
VCID-d9he-ahd2-xkde
Aliases: SS-2016-013 |
Member.Name isn't escaped The core template `framework/templates/Includes/GridField_print.ss` uses "Printed by $Member.Name". If the currently logged in members first name or surname contain XSS, this prints the raw HTML out, because `Member->getName()` just returns the raw `FirstName + Surname` as a string, which is injected directly. |
Affected by 40 other vulnerabilities. Affected by 39 other vulnerabilities. Affected by 39 other vulnerabilities. Affected by 43 other vulnerabilities. Affected by 26 other vulnerabilities. |
|
VCID-djww-2v4e-qkb2
Aliases: CVE-2020-26138 GHSA-7mv4-4xpg-xq44 |
Affected by 19 other vulnerabilities. Affected by 19 other vulnerabilities. |
|
|
VCID-empu-95n7-5qcq
Aliases: SS-2015-027 |
Insufficient sanitization in "Add from URL" "Add from URL" does not clearly sanitize URL server side in `HtmlEditorField_Toolbar`. The current logic will pass this through to Oembed, which will probably reject most dangerous URLs, but it's possible future changes would break this. |
Affected by 56 other vulnerabilities. Affected by 12 other vulnerabilities. |
|
VCID-eu6p-szkb-m7b1
Aliases: CVE-2017-5197 GHSA-xmjh-wjc5-wg4h |
Cross-site Scripting There is an XSS in SilverStripe CMS. |
Affected by 37 other vulnerabilities. Affected by 36 other vulnerabilities. Affected by 42 other vulnerabilities. Affected by 40 other vulnerabilities. |
|
VCID-ewqs-8fqc-b3hk
Aliases: GHSA-74j9-xhqr-6qv3 |
Reflected Cross Site Scripting (XSS) in error message If a website has been set to the "dev" environment mode, a URL can be provided which includes an XSS payload which will be executed in the resulting error message. |
Affected by 2 other vulnerabilities. |
|
VCID-farn-35ej-t7eg
Aliases: SS-2015-026 |
XSS vulnerability in form field validation A high level XSS risk has been identified in the encoding of validation messages in certain FormField classes. Certain fields such as the `NumericField` and `DropdownField` have been identified, but any form field which presents any invalid content as a part of its validation response will be at risk. |
Affected by 58 other vulnerabilities. Affected by 52 other vulnerabilities. Affected by 56 other vulnerabilities. Affected by 12 other vulnerabilities. |
|
VCID-fn6y-hytc-r3b5
Aliases: CVE-2019-19326 GHSA-q9ff-3q93-fm8m |
Affected by 18 other vulnerabilities. Affected by 23 other vulnerabilities. Affected by 22 other vulnerabilities. |
|
|
VCID-fygk-h8hh-x3c9
Aliases: SS-2015-020 |
Privilege Escalation A member with the permission EDIT_PERMISSIONS is able to re-assign themselves (or another member) to ADMIN level. |
Affected by 63 other vulnerabilities. |
|
VCID-gr5g-7tkc-2kfa
Aliases: CVE-2023-22728 GHSA-jh3w-6jp2-vqqm |
Missing Authorization Silverstripe Framework is the Model-View-Controller framework that powers the Silverstripe content management system. Prior to version 4.12.15, the GridField print view incorrectly validates the permission of DataObjects potentially allowing a content author to view records they are not authorised to access. Users should upgrade to Silverstripe Framework 4.12.15 or above to address the issue. |
Affected by 10 other vulnerabilities. |
|
VCID-gw4m-zbjs-3fgx
Aliases: SS-2015-027-1 |
Improper Input Validation `HtmlEditor` improper URL sanitisation. |
Affected by 56 other vulnerabilities. Affected by 12 other vulnerabilities. |
|
VCID-jh6m-gbpk-9ufc
Aliases: CVE-2015-5062 GHSA-fh35-p8ph-p545 |
Silverstripe CMS Open Redirect Open redirect vulnerability in SilverStripe CMS & Framework 3.1.13 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the returnURL parameter to dev/build. |
Affected by 68 other vulnerabilities. |
|
VCID-k1aa-deyg-2kdg
Aliases: CVE-2019-14272 GHSA-jgw2-f5mx-rg7h |
Affected by 45 other vulnerabilities. Affected by 41 other vulnerabilities. Affected by 25 other vulnerabilities. Affected by 26 other vulnerabilities. |
|
|
VCID-k2xa-uwrr-ffez
Aliases: GHSA-52cw-pvq9-9m5v |
Silverstripe uses TinyMCE which allows svg files linked in object tags |
Affected by 6 other vulnerabilities. |
|
VCID-k6ed-y2ud-wffu
Aliases: CVE-2019-14273 GHSA-43jj-2rwc-2m3f |
Affected by 45 other vulnerabilities. Affected by 41 other vulnerabilities. Affected by 25 other vulnerabilities. Affected by 26 other vulnerabilities. |
|
|
VCID-kcq9-5h99-abct
Aliases: CVE-2024-47605 GHSA-7cmp-cgg8-4c82 |
Affected by 2 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
|
VCID-km94-727n-nfa6
Aliases: SS-2015-029 |
CSRF vulnerability in savetreenodes `savetreenode` action does not have sufficient CSRF protection, meaning that in some cases users with CMS access can be tricked into posting unspecified data into the CMS from external websites. |
Affected by 55 other vulnerabilities. Affected by 52 other vulnerabilities. Affected by 54 other vulnerabilities. Affected by 51 other vulnerabilities. Affected by 55 other vulnerabilities. Affected by 53 other vulnerabilities. |
|
VCID-ku6h-zhz1-8ydr
Aliases: SS-2016-005 |
Brute force bypass on default admin Default Administrator accounts were not subject to the same brute force protection afforded to other Member accounts. Failed login counts were not logged for default admins resulting in unlimited attempts on the default admin username and password. |
Affected by 55 other vulnerabilities. Affected by 52 other vulnerabilities. Affected by 54 other vulnerabilities. Affected by 51 other vulnerabilities. Affected by 55 other vulnerabilities. Affected by 53 other vulnerabilities. |
|
VCID-m2bw-tabk-qyd8
Aliases: CVE-2019-12617 GHSA-6r58-4xgr-gm6m |
Affected by 26 other vulnerabilities. Affected by 25 other vulnerabilities. Affected by 26 other vulnerabilities. |
|
|
VCID-mvra-6wnv-xya1
Aliases: CVE-2021-36150 GHSA-j66h-cc96-c32q |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') SilverStripe Framework suffers from a XSS vulnerablity. |
Affected by 18 other vulnerabilities. Affected by 18 other vulnerabilities. |
|
VCID-nzdu-xh5w-27g7
Aliases: CVE-2023-22729 GHSA-fw84-xgm8-9jmv |
URL Redirection to Untrusted Site ('Open Redirect') Silverstripe Framework is the Model-View-Controller framework that powers the Silverstripe content management system. Prior to version 4.12.15, an attacker can display a link to a third party website on a login screen by convincing a legitimate content author to follow a specially crafted link. Users should upgrade to Silverstripe Framework 4.12.15 or above to address the issue. |
Affected by 10 other vulnerabilities. |
|
VCID-pq7w-n99a-q7cj
Aliases: CVE-2017-18049 GHSA-2jvj-mhf2-g99w |
Injection Vulnerability In the CSV export feature of SilverStripe, it is possible for the output to contain macros and scripts, which may be executed if imported without sanitization into common software. |
Affected by 34 other vulnerabilities. Affected by 30 other vulnerabilities. Affected by 35 other vulnerabilities. Affected by 31 other vulnerabilities. Affected by 45 other vulnerabilities. Affected by 41 other vulnerabilities. |
|
VCID-qrhh-c86j-rqe6
Aliases: CVE-2020-25817 GHSA-3vjc-5x79-m9r8 |
Affected by 19 other vulnerabilities. Affected by 19 other vulnerabilities. |
|
|
VCID-rat4-3wbz-33fu
Aliases: GHSA-x5w2-wcr8-9q45 |
Silverstripe Missing security check on dev/build/defaults |
Affected by 52 other vulnerabilities. Affected by 50 other vulnerabilities. Affected by 51 other vulnerabilities. |
|
VCID-tp75-2k7m-6yaw
Aliases: CVE-2020-9311 GHSA-2pw2-qpcp-m47x |
Affected by 18 other vulnerabilities. |
|
|
VCID-txyu-4qkf-r3cs
Aliases: CVE-2023-48714 GHSA-qm2j-qvq3-j29v |
Exposure of Sensitive Information to an Unauthorized Actor Silverstripe Framework is the framework that forms the base of the Silverstripe content management system. Prior to versions 4.13.39 and 5.1.11, if a user should not be able to see a record, but that record can be added to a `GridField` using the `GridFieldAddExistingAutocompleter` component, the record's title can be accessed by that user. Versions 4.13.39 and 5.1.11 contain a fix for this issue. |
Affected by 8 other vulnerabilities. Affected by 8 other vulnerabilities. |
|
VCID-tzgn-vazz-7kct
Aliases: SS-2015-026-1 |
Cross-site Scripting Form field validation message XSS vulnerability. |
Affected by 56 other vulnerabilities. Affected by 12 other vulnerabilities. |
|
VCID-u7hh-49t3-13df
Aliases: SS-2016-014 |
Pre-existing alc_enc cookies log users in if remember me is disabled If remember me is on and users log in with the box checked, if the developer then disabled "remember me" function, any pre-existing cookies will continue to authenticate users. |
Affected by 40 other vulnerabilities. Affected by 39 other vulnerabilities. Affected by 39 other vulnerabilities. Affected by 43 other vulnerabilities. Affected by 26 other vulnerabilities. |
|
VCID-ud6e-smr7-vffw
Aliases: SS-2016-001 |
XSS in CMSController BackURL A XSS risk exists in the returnURL parameter passed to CMSSecurity/success. An unvalidated url could cause the user to redirect to an unverified third party url outside of the site. |
Affected by 55 other vulnerabilities. Affected by 52 other vulnerabilities. Affected by 54 other vulnerabilities. Affected by 51 other vulnerabilities. Affected by 55 other vulnerabilities. Affected by 53 other vulnerabilities. |
|
VCID-upvz-qc95-nua2
Aliases: SS-2016-010 |
ReadOnly transformation for formfields exploitable Form fields returning `isReadonly()` as true are vulnerable to reflected XSS injections. This includes `ReadonlyField`, `LookupField`, `HTMLReadonlyField`, as well as special purpose fields like `TimeField_Readonly`. Values submitted to through these form fields are not filtered out from the form session data, and might be shown to the user depending on the form behaviour. For example, form validation errors cause the form to re-render with previously submitted values by default. SilverStripe forms automatically load values from request data (GET and POST), which enables malicious use of URLs if your form uses these fields and does not overwrite data on form construction. Readonly and disabled form fields are already filtered out in `saveInto()`, so maliciously submitted data on these fields does not make it into the database unless you are accessing form values directly in your saving logic. |
Affected by 36 other vulnerabilities. Affected by 35 other vulnerabilities. Affected by 35 other vulnerabilities. Affected by 39 other vulnerabilities. |
|
VCID-uww2-1x5r-ufc6
Aliases: SS-2016-015 |
XSS In OptionsetField and CheckboxSetField List of key / value pairs assigned to `OptionsetField` or `CheckboxSetField` do not have a default casting assigned to them. The effect of this is a potential XSS vulnerability in lists where either key or value contain unescaped HTML. |
Affected by 40 other vulnerabilities. Affected by 39 other vulnerabilities. Affected by 39 other vulnerabilities. Affected by 43 other vulnerabilities. Affected by 26 other vulnerabilities. |
|
VCID-vrv4-sy3z-jfe2
Aliases: CVE-2017-14498 GHSA-j696-6m57-mcrv |
Cross-site Scripting SilverStripe CMS has an XSS via an SVG document that is mishandled by (1) the Insert Media option in the content editor or (2) an `admin/assets/add` pathname. |
Affected by 37 other vulnerabilities. Affected by 37 other vulnerabilities. |
|
VCID-wxc6-ndg5-dqd9
Aliases: GHSA-j982-5jv7-v43r |
Silverstripe Form field validation message XSS vulnerability |
Affected by 58 other vulnerabilities. Affected by 56 other vulnerabilities. |
|
VCID-x6g5-a61e-3khu
Aliases: CVE-2019-12205 GHSA-rfvw-5848-gxc5 |
Affected by 26 other vulnerabilities. Affected by 25 other vulnerabilities. Affected by 26 other vulnerabilities. |
|
|
VCID-xazf-vmz5-r3dj
Aliases: CVE-2017-12849 GHSA-fwhr-g5r4-xgxf |
Information Exposure Response discrepancy in the login and password reset forms in SilverStripe CMS allows remote attackers to enumerate users via timing attack. |
Affected by 35 other vulnerabilities. Affected by 35 other vulnerabilities. Affected by 37 other vulnerabilities. Affected by 37 other vulnerabilities. |
|
VCID-ywfx-pjg6-aqcj
Aliases: CVE-2025-30148 GHSA-rhx4-hvx9-j387 |
Affected by 0 other vulnerabilities. |
|
|
VCID-yxg1-dz91-ckgs
Aliases: CVE-2019-12437 GHSA-fx37-56v6-85q6 |
Cross-Site Request Forgery (CSRF) Cross Site Request Forgery (CSRF) Protection Bypass in GraphQL. |
Affected by 26 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||