Security: silverstripe/silverstripe-framework
Security
No security policy detected
This project has not set up a SECURITY.md file yet.
-
XSS vulnerability with encoded payloadGHSA-chx7-9x8h-r5mg published
Jul 17, 2024 by emteknetnzModerate -
TinyMCE allows svg files linked in object tagsGHSA-52cw-pvq9-9m5v published
Jul 17, 2024 by emteknetnzModerate -
Record titles for restricted records can be viewed if exposed by GridFieldAddExistingAutocompleterGHSA-qm2j-qvq3-j29v published
Jan 22, 2024 by GuySartorelliModerate -
Members with no password can be created and bypass custom login formsGHSA-36xx-7vf6-7mv3 published
Jul 31, 2023 by maxime-rainvilleLow -
Open redirect vulnerability on CMSSecurity relogin screenGHSA-fw84-xgm8-9jmv published
Apr 26, 2023 by GuySartorelliModerate -
Missing permission check of canView in GridFieldPrintButtonGHSA-jh3w-6jp2-vqqm published
Apr 26, 2023 by GuySartorelliModerate
Learn more about advisories related to silverstripe/silverstripe-framework in the GitHub Advisory Database