Moderate severityNVD Advisory· Published Dec 20, 2022· Updated Apr 17, 2025
CVE-2022-42949
CVE-2022-42949
Description
Silverstripe silverstripe/subsites through 2.6.0 has Insecure Permissions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
silverstripe/subsitesPackagist | >= 2.0.0, < 2.6.1 | 2.6.1 |
Affected products
2- silverstripe/subsitesdescription
Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-cx45-565q-6qx8ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-42949ghsaADVISORY
- github.com/FriendsOfPHP/security-advisories/blob/master/silverstripe/subsites/CVE-2022-42949.yamlghsaWEB
- github.com/silverstripe/silverstripe-subsites/commit/73f3d15bfb90ba779dd5498fcc5ae4ab292d6272ghsaWEB
- www.silverstripe.org/download/security-releasesghsaWEB
- www.silverstripe.org/download/security-releases/cve-2022-42949ghsaWEB
- www.silverstripe.org/download/security-releases/mitre
News mentions
0No linked articles in our index yet.