VYPR
High severityNVD Advisory· Published Feb 19, 2020· Updated Aug 4, 2024

CVE-2019-12437

CVE-2019-12437

Description

In SilverStripe through 4.3.3, the previous fix for SS-2018-007 does not completely mitigate the risk of CSRF in GraphQL mutations,

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
silverstripe/graphqlPackagist
>= 2.0.0, < 2.0.52.0.5
silverstripe/graphqlPackagist
>= 3.1.0, < 3.1.23.1.2

Affected products

2

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.