Silverstripe Framework vulnerabilities

CVE-2025-30148 [MEDIUM] CWE-79 CVE-2025-30148: Silverstripe Framework is a PHP framework which powers the Silverstripe CMS. Prior to 5.3.23, bad ac Silverstripe Framework is a PHP framework which powers the Silverstripe CMS. Prior to 5.3.23, bad actor with access to edit content in the CMS could send a specifically crafted encoded payload to the server, which could be used to inject a JavaScript payload on the front end of the site. The payload would be sanitized on the client-side, but server-s

CVE-2024-53277 [MEDIUM] CWE-79 CVE-2024-53277: Silverstripe Framework is a PHP framework which powers the Silverstripe CMS. In some cases, form mes Silverstripe Framework is a PHP framework which powers the Silverstripe CMS. In some cases, form messages can contain HTML markup. This is an intentional feature, allowing links and other relevant HTML markup for the given message. Some form messages include content that the user can provide. There are scenarios in the CMS where that content doesn't

CVE-2024-47605 [MEDIUM] CWE-79 Silverstripe Framework has a XSS via insert media remote file oembed Silverstripe Framework has a XSS via insert media remote file oembed ### Impact When using the "insert media" functionality, the linked oEmbed JSON includes an HTML attribute which will replace the embed shortcode. The HTML is not sanitized before replacing the shortcode, allowing a script payload to be executed on both the CMS and the front-end of the website. ## References - https://www.silv

CVE-2024-32981 [MEDIUM] CWE-79 CVE-2024-32981: Silverstripe framework is the PHP framework forming the base for the Silverstripe CMS. In affected v Silverstripe framework is the PHP framework forming the base for the Silverstripe CMS. In affected versions a bad actor with access to edit content in the CMS could add send a specifically crafted encoded payload to the server, which could be used to inject a JavaScript payload on the front end of the site. The payload would be sanitised on the clien

CVE-2023-48714 [MEDIUM] CWE-200 CVE-2023-48714: Silverstripe Framework is the framework that forms the base of the Silverstripe content management s Silverstripe Framework is the framework that forms the base of the Silverstripe content management system. Prior to versions 4.13.39 and 5.1.11, if a user should not be able to see a record, but that record can be added to a `GridField` using the `GridFieldAddExistingAutocompleter` component, the record's title can be accessed by that user. Versions

CVE-2023-32302 [LOW] CWE-20 Silverstripe Framework: Members with no password can be created and bypass custom login forms Silverstripe Framework: Members with no password can be created and bypass custom login forms When a new `Member` record was created in the cms it was possible to set a blank password. If an attacker knows the email address of the user with the blank password then they can attempt to log in using an empty password. The default member authenticator, login form and basic auth

CVE-2023-22728 [MEDIUM] CWE-862 CVE-2023-22728: Silverstripe Framework is the Model-View-Controller framework that powers the Silverstripe content m Silverstripe Framework is the Model-View-Controller framework that powers the Silverstripe content management system. Prior to version 4.12.15, the GridField print view incorrectly validates the permission of DataObjects potentially allowing a content author to view records they are not authorised to access. Users should upgrade to Silverstripe Fram

CVE-2023-22729 [MEDIUM] CWE-601 CVE-2023-22729: Silverstripe Framework is the Model-View-Controller framework that powers the Silverstripe content m Silverstripe Framework is the Model-View-Controller framework that powers the Silverstripe content management system. Prior to version 4.12.15, an attacker can display a link to a third party website on a login screen by convincing a legitimate content author to follow a specially crafted link. Users should upgrade to Silverstripe Framework 4.12.15

CVE-2022-38724 [MEDIUM] CWE-79 CVE-2022-38724: Silverstripe silverstripe/framework through 4.11.0, silverstripe/assets through 1.11.0, and silverst Silverstripe silverstripe/framework through 4.11.0, silverstripe/assets through 1.11.0, and silverstripe/asset-admin through 1.11.0 allow XSS.

CVE-2022-37429 [MEDIUM] CWE-79 CVE-2022-37429: Silverstripe silverstripe/framework through 4.11 allows XSS (issue 1 of 2) via JavaScript payload to Silverstripe silverstripe/framework through 4.11 allows XSS (issue 1 of 2) via JavaScript payload to the href attribute of a link by splitting a javascript URL with white space characters.

CVE-2022-37430 [MEDIUM] CWE-79 CVE-2022-37430: Silverstripe silverstripe/framework through 4.11 allows XSS vulnerability via href attribute of a li Silverstripe silverstripe/framework through 4.11 allows XSS vulnerability via href attribute of a link (issue 2 of 2).

CVE-2022-38145 [MEDIUM] CWE-79 CVE-2022-38145: Silverstripe silverstripe/framework through 4.11 allows XSS (issue 1 of 3) via remote attackers addi Silverstripe silverstripe/framework through 4.11 allows XSS (issue 1 of 3) via remote attackers adding a Javascript payload to a page's meta description and get it executed in the versioned history compare view.

CVE-2022-38147 [MEDIUM] CWE-79 CVE-2022-38147: Silverstripe silverstripe/framework through 4.11 allows XSS (issue 3 of 3). Silverstripe silverstripe/framework through 4.11 allows XSS (issue 3 of 3).

CVE-2022-38462 [MEDIUM] CWE-79 CVE-2022-38462: Silverstripe silverstripe/framework through 4.11 is vulnerable to XSS by carefully crafting a return Silverstripe silverstripe/framework through 4.11 is vulnerable to XSS by carefully crafting a return URL on a /dev/build or /Security/login request.

CVE-2022-38148 [HIGH] CWE-89 CVE-2022-38148: Silverstripe silverstripe/framework through 4.11 allows SQL Injection. Silverstripe silverstripe/framework through 4.11 allows SQL Injection.

CVE-2022-38146 [MEDIUM] CWE-79 CVE-2022-38146: Silverstripe silverstripe/framework through 4.11 allows XSS (issue 2 of 3). Silverstripe silverstripe/framework through 4.11 allows XSS (issue 2 of 3).

CVE-2021-41559 [MEDIUM] CWE-776 Quadratic blowup in Convert::xml2array() Quadratic blowup in Convert::xml2array() Silverstripe silverstripe/framework 4.x until 4.10.9 has a quadratic blowup in Convert::xml2array() that enables a remote attack via a crafted XML document.

CVE-2022-28803 [MEDIUM] CWE-79 Stored XSS in link tags added via XHR in SilverStripe Framework Stored XSS in link tags added via XHR in SilverStripe Framework SilverStripe Framework 4.x prior to 4.10.9 is vulnerable to cross-site scripting inside the href attribute of an HTML hyperlink, which can be added to website content via XMLHttpRequest (XHR) by an authenticated CMS user.

CVE-2022-25238 [MEDIUM] CWE-79 CVE-2022-25238: Silverstripe silverstripe/framework through 4.10.0 allows XSS, inside of script tags that can can be Silverstripe silverstripe/framework through 4.10.0 allows XSS, inside of script tags that can can be added to website content via XHR by an authenticated CMS user if the cwp-core module is not installed on the sanitise_server_side contig is not set to true in project code.

CVE-2020-6164 [HIGH] CWE-200 Silverstripe CMS information disclosure Silverstripe CMS information disclosure In SilverStripe through 4.5.0, a specific URL path configured by default through the silverstripe/framework module can be used to disclose the fact that a domain is hosting a Silverstripe application. There is no disclosure of the specific version. The functionality on this URL path is limited to execution in a CLI context, and is not known to present a vulnerability through web-based ac