cbcvebase.

Silverstripe vulnerabilities

63 known vulnerabilities affecting silverstripe/silverstripe.

Total CVEs
63
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH6MEDIUM51LOW3

Vulnerabilities

Page 1 of 4
CVE-2019-5715P3CRITICALCVSS 9.8≥ 3.0.0, < 3.6.7≥ 3.7.0, < 3.7.3+4 more2019-04-11
CVE-2019-5715 [CRITICAL] CWE-89 CVE-2019-5715: All versions of SilverStripe 3 prior to 3.6.7 and 3.7.3, and all versions of SilverStripe 4 prior to All versions of SilverStripe 3 prior to 3.6.7 and 3.7.3, and all versions of SilverStripe 4 prior to 4.0.7, 4.1.5, 4.2.4, and 4.3.1 allows Reflected SQL Injection through Form and DataObject.
nvd
CVE-2019-12204P3CRITICALCVSS 9.8≥ 4.1.0, ≤ 4.3.32019-09-25
CVE-2019-12204 [CRITICAL] CVE-2019-12204: In SilverStripe through 4.3.3, a missing warning about leaving install.php in a public webroot can l In SilverStripe through 4.3.3, a missing warning about leaving install.php in a public webroot can lead to unauthenticated admin access.
nvd
CVE-2013-2653P4MEDIUMCVSS 5.8PoCv3.0.32013-11-13
CVE-2013-2653 [MEDIUM] CWE-20 CVE-2013-2653: security/MemberLoginForm.php in SilverStripe 3.0.3 supports login using a GET request, which makes i security/MemberLoginForm.php in SilverStripe 3.0.3 supports login using a GET request, which makes it easier for remote attackers to conduct phishing attacks without detection by the victim.
nvd
CVE-2011-4958P4MEDIUMCVSS 4.3PoC≤ 2.3.12v2.3.0+17 more2014-04-08
CVE-2011-4958 [MEDIUM] CWE-79 CVE-2011-4958: Cross-site scripting (XSS) vulnerability in the process function in SSViewer.php in SilverStripe bef Cross-site scripting (XSS) vulnerability in the process function in SSViewer.php in SilverStripe before 2.3.13 and 2.4.x before 2.4.6 allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING to template placeholders, as demonstrated by a request to (1) admin/reports/, (2) admin/comments/, (3) admin/, (4) admin/show/, (5) admi
nvd
CVE-2020-6164P3HIGHCVSS 7.5≤ 3.0.0≥ 4.0.0, < 4.4.7+1 more2020-07-15
CVE-2020-6164 [HIGH] CVE-2020-6164: In SilverStripe through 4.5.0, a specific URL path configured by default through the silverstripe/fr In SilverStripe through 4.5.0, a specific URL path configured by default through the silverstripe/framework module can be used to disclose the fact that a domain is hosting a Silverstripe application. There is no disclosure of the specific version. The functionality on this URL path is limited to execution in a CLI context, and is not known to present a vulnera
nvd
CVE-2020-9280P3HIGHCVSS 7.5≥ 4.0.0, ≤ 4.5.02020-04-15
CVE-2020-9280 [HIGH] CWE-434 CVE-2020-9280: In SilverStripe through 4.5, files uploaded via Forms to folders migrated from Silverstripe CMS 3.x In SilverStripe through 4.5, files uploaded via Forms to folders migrated from Silverstripe CMS 3.x may be put to the default "/Uploads" folder instead. This affects installations which allowed upload folder protection via the optional silverstripe/secureassets module under 3.x. This module is installed and enabled by default on the Common Web Platform (
nvd
CVE-2011-4960P3HIGHCVSS 7.5v2.3.0v2.3.1+15 more2012-09-17
CVE-2011-4960 [HIGH] CWE-89 CVE-2011-4960: SQL injection vulnerability in the Folder::findOrMake method in SilverStripe 2.3.x before 2.3.12 and SQL injection vulnerability in the Folder::findOrMake method in SilverStripe 2.3.x before 2.3.12 and 2.4.x before 2.4.6 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
nvd
CVE-2010-4824P3MEDIUMCVSS 6.8v2.3.0v2.3.1+12 more2012-09-17
CVE-2010-4824 [MEDIUM] CWE-89 CVE-2010-4824: SQL injection vulnerability in the augmentSQL method in core/model/Translatable.php in SilverStripe SQL injection vulnerability in the augmentSQL method in core/model/Translatable.php in SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4, when the Translatable extension is enabled, allows remote attackers to execute arbitrary SQL commands via the locale parameter.
nvd
CVE-2011-4959P3MEDIUMCVSS 6.8v2.3.0v2.3.1+16 more2012-09-17
CVE-2011-4959 [MEDIUM] CWE-89 CVE-2011-4959: SQL injection vulnerability in the addslashes method in SilverStripe 2.3.x before 2.3.12 and 2.4.x b SQL injection vulnerability in the addslashes method in SilverStripe 2.3.x before 2.3.12 and 2.4.x before 2.4.6, when connected to a MySQL database using far east character encodings, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
nvd
CVE-2020-26136P3MEDIUMCVSS 6.5fixed in 4.6.0v4.6.02021-06-08
CVE-2020-26136 [MEDIUM] CWE-287 CVE-2020-26136: In SilverStripe through 4.6.0-rc1, GraphQL doesn't honour MFA (multi-factor authentication) when usi In SilverStripe through 4.6.0-rc1, GraphQL doesn't honour MFA (multi-factor authentication) when using basic authentication.
nvd
CVE-2008-6753P3HIGHCVSS 7.5≤ 2.2.1v2.0.0+5 more2009-04-27
CVE-2008-6753 [HIGH] CWE-89 CVE-2008-6753: SQL injection vulnerability in SilverStripe before 2.2.2 allows remote attackers to execute arbitrar SQL injection vulnerability in SilverStripe before 2.2.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to AjaxUniqueTextField.
nvd
CVE-2011-4962P3MEDIUMCVSS 6.8v2.4.0v2.4.1+4 more2012-09-17
CVE-2011-4962 [MEDIUM] CWE-20 CVE-2011-4962: code/sitefeatures/PageCommentInterface.php in SilverStripe 2.4.x before 2.4.6 might allow remote att code/sitefeatures/PageCommentInterface.php in SilverStripe 2.4.x before 2.4.6 might allow remote attackers to execute arbitrary code via a crafted cookie in a user comment submission, which is not properly handled when it is deserialized.
nvd
CVE-2019-12437P4HIGHCVSS 8.8≤ 4.3.32020-02-19
CVE-2019-12437 [HIGH] CWE-352 CVE-2019-12437: In SilverStripe through 4.3.3, the previous fix for SS-2018-007 does not completely mitigate the ris In SilverStripe through 4.3.3, the previous fix for SS-2018-007 does not completely mitigate the risk of CSRF in GraphQL mutations,
nvd
CVE-2009-1433P4HIGHCVSS 7.5≤ 2.3.1v2.0.0+10 more2009-04-24
CVE-2009-1433 [HIGH] CWE-89 CVE-2009-1433: SQL injection vulnerability in File::find (filesystem/File.php) in SilverStripe before 2.3.1 allows SQL injection vulnerability in File::find (filesystem/File.php) in SilverStripe before 2.3.1 allows remote attackers to execute arbitrary SQL commands via the filename parameter.
nvd
CVE-2022-24444P4MEDIUMCVSS 6.5≤ 2.4.0v2.5.02022-06-28
CVE-2022-24444 [MEDIUM] CWE-384 CVE-2022-24444: Silverstripe silverstripe/framework through 4.10 allows Session Fixation. Silverstripe silverstripe/framework through 4.10 allows Session Fixation.
nvd
CVE-2010-5091P4MEDIUMCVSS 6.0v2.3.0v2.3.1+7 more2012-08-26
CVE-2010-5091 [MEDIUM] CWE-94 CVE-2010-5091: The setName function in filesystem/File.php in SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4. The setName function in filesystem/File.php in SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.1 allows remote authenticated users with CMS author privileges to execute arbitrary PHP code by changing the extension of an uploaded file.
nvd
CVE-2010-5080P4MEDIUMCVSS 6.8v2.3.0v2.3.1+12 more2012-08-26
CVE-2010-5080 [MEDIUM] CWE-255 CVE-2010-5080: The Security/changepassword URL action in SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 pa The Security/changepassword URL action in SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 passes a token as a GET parameter while changing a password through email, which allows remote attackers to obtain sensitive data and hijack the session via the HTTP referer logs on a server, aka "HTTP referer leakage."
nvd
CVE-2010-5079P4MEDIUMCVSS 5.0v2.3.0v2.3.1+12 more2012-09-17
CVE-2010-5079 [MEDIUM] CWE-310 CVE-2010-5079: SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 uses weak entropy when generating tokens for SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 uses weak entropy when generating tokens for (1) the CSRF protection mechanism, (2) autologin, (3) "forgot password" functionality, and (4) password salts, which makes it easier for remote attackers to bypass intended access restrictions via unspecified vectors.
nvd
CVE-2017-12849P4MEDIUMCVSS 5.3≤ 3.5.4v3.6.02017-10-12
CVE-2017-12849 [MEDIUM] CWE-200 CVE-2017-12849: Response discrepancy in the login and password reset forms in SilverStripe CMS before 3.5.5 and 3.6. Response discrepancy in the login and password reset forms in SilverStripe CMS before 3.5.5 and 3.6.x before 3.6.1 allows remote attackers to enumerate users via timing attacks.
nvd
CVE-2020-6165P4MEDIUMCVSS 5.3≥ 3.2.0, < 3.2.4≥ 3.2.5, < 3.3.0+1 more2020-07-15
CVE-2020-6165 [MEDIUM] CWE-276 CVE-2020-6165: SilverStripe 4.5.0 allows attackers to read certain records that should not have been placed into a SilverStripe 4.5.0 allows attackers to read certain records that should not have been placed into a result set. This affects silverstripe/recipe-cms. The automatic permission-checking mechanism in the silverstripe/graphql module does not provide complete protection against lists that are limited (e.g., through pagination), resulting in records that sho
nvd
Silverstripe vulnerabilities | cvebase