Medium severity6.1NVD Advisory· Published Sep 15, 2017· Updated May 13, 2026
CVE-2017-14498
CVE-2017-14498
Description
SilverStripe CMS before 3.6.1 has XSS via an SVG document that is mishandled by (1) the Insert Media option in the content editor or (2) an admin/assets/add pathname, as demonstrated by the admin/pages/edit/EditorToolbar/MediaForm/field/AssetUploadField/upload URI, aka issue SS-2017-017.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
silverstripe/cmsPackagist | < 3.6.1 | 3.6.1 |
Affected products
1Patches
2c25478bef75c[SS-2017-017] FIX SVG uploads disabled by default
1 file changed · +1 −1
assets/.htaccess+1 −1 modified@@ -22,7 +22,7 @@ # Please note Apache 1.3 does not support regular expression case insensitive matches using PCRE style. # Deny from all -<FilesMatch "\.(?i:html|htm|xhtml|js|css|bmp|png|gif|jpg|jpeg|ico|pcx|tif|tiff|au|mid|midi|mpa|mp3|ogg|m4a|ra|wma|wav|cda|avi|mpg|mpeg|asf|wmv|m4v|mov|mkv|mp4|ogv|webm|swf|flv|ram|rm|doc|docx|dotx|dotm|txt|rtf|xls|xlsx|xltx|xltm|pages|ppt|pptx|potx|potm|pps|csv|cab|arj|tar|zip|zipx|sit|sitx|svg|gz|tgz|bz2|ace|arc|pkg|dmg|hqx|jar|xml|pdf|gpx|kml)$"> +<FilesMatch "\.(?i:html|htm|xhtml|js|css|bmp|png|gif|jpg|jpeg|ico|pcx|tif|tiff|au|mid|midi|mpa|mp3|ogg|m4a|ra|wma|wav|cda|avi|mpg|mpeg|asf|wmv|m4v|mov|mkv|mp4|ogv|webm|swf|flv|ram|rm|doc|docx|dotx|dotm|txt|rtf|xls|xlsx|xltx|xltm|pages|ppt|pptx|potx|potm|pps|csv|cab|arj|tar|zip|zipx|sit|sitx|gz|tgz|bz2|ace|arc|pkg|dmg|hqx|jar|xml|pdf|gpx|kml)$"> Allow from all </FilesMatch>
25b77a2ff8de[SS-2017-017] FIX SVG uploads disabled by default
1 file changed · +1 −1
filesystem/File.php+1 −1 modified@@ -129,7 +129,7 @@ class File extends DataObject { '','ace','arc','arj','asf','au','avi','bmp','bz2','cab','cda','css','csv','dmg','doc','docx','dotx','dotm', 'flv','gif','gpx','gz','hqx','ico','jar','jpeg','jpg','js','kml', 'm4a','m4v', 'mid','midi','mkv','mov','mp3','mp4','mpa','mpeg','mpg','ogg','ogv','pages','pcx','pdf','pkg', - 'png','pps','ppt','pptx','potx','potm','ra','ram','rm','rtf','sit','sitx', 'svg', 'tar','tgz','tif','tiff', + 'png','pps','ppt','pptx','potx','potm','ra','ram','rm','rtf','sit','sitx', 'tar','tgz','tif','tiff', 'txt','wav','webm','wma','wmv','xls','xlsx','xltx','xltm','zip','zipx', );
Vulnerability mechanics
Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
6- lists.openwall.net/full-disclosure/2017/09/14/2nvdExploitMailing ListThird Party AdvisoryWEB
- docs.silverstripe.org/en/3/changelogs/3.6.1nvdVendor AdvisoryWEB
- github.com/advisories/GHSA-j696-6m57-mcrvghsaADVISORY
- github.com/silverstripe/silverstripe-framework/commit/25b77a2ff8deabe8e8894002b9a5647eaec27b0anvdThird Party AdvisoryWEB
- github.com/silverstripe/silverstripe-installer/commit/c25478bef75cc5482852e80a1fa6f1f0e6460e39nvdThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2017-14498ghsaADVISORY
News mentions
0No linked articles in our index yet.