Packagist (Composer) package
dnadesign/silverstripe-elemental
pkg:composer/dnadesign/silverstripe-elemental
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-25197 | Med | 5.4 | >= 2.1.2, < 5.3.12 | 5.3.12 | Apr 10, 2025 | Silverstripe Elemental extends a page type to swap the content area for a list of manageable elements to compose a page out of rather than a single text field. An elemental block can include an XSS payload, which can be executed when viewing the "Content blocks in use" report. Th |
- affected >= 2.1.2, < 5.3.12fixed 5.3.12
Silverstripe Elemental extends a page type to swap the content area for a list of manageable elements to compose a page out of rather than a single text field. An elemental block can include an XSS payload, which can be executed when viewing the "Content blocks in use" report. Th