Packagist (Composer) package
silverstripe/admin
pkg:composer/silverstripe/admin
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-49783 | — | >= 1.0.0, < 1.13.19 | 1.13.19 | Jan 23, 2024 | Silverstripe Admin provides a basic management interface for the Silverstripe Framework. In versions on the 1.x branch prior to 1.13.19 and on the 2.x branch prior to 2.1.8, users who don't have edit or delete permissions for records exposed in a `ModelAdmin` can still edit or de | ||
| CVE-2022-38146 | — | >= 1.0.0, < 1.11.3 | 1.11.3 | Nov 21, 2022 | Silverstripe silverstripe/framework through 4.11 allows XSS (issue 2 of 3). | ||
| CVE-2021-36150 | — | >= 1.0.0, < 1.8.1 | 1.8.1 | Oct 7, 2021 | SilverStripe Framework through 4.8.1 allows XSS. | ||
| CVE-2019-12205 | — | < 1.3.5 | 1.3.5 | Sep 25, 2019 | SilverStripe through 4.3.3 has Flash Clipboard Reflected XSS. |
- CVE-2023-49783Jan 23, 2024affected >= 1.0.0, < 1.13.19fixed 1.13.19
Silverstripe Admin provides a basic management interface for the Silverstripe Framework. In versions on the 1.x branch prior to 1.13.19 and on the 2.x branch prior to 2.1.8, users who don't have edit or delete permissions for records exposed in a `ModelAdmin` can still edit or de
- CVE-2022-38146Nov 21, 2022affected >= 1.0.0, < 1.11.3fixed 1.11.3
Silverstripe silverstripe/framework through 4.11 allows XSS (issue 2 of 3).
- CVE-2021-36150Oct 7, 2021affected >= 1.0.0, < 1.8.1fixed 1.8.1
SilverStripe Framework through 4.8.1 allows XSS.
- CVE-2019-12205Sep 25, 2019affected < 1.3.5fixed 1.3.5
SilverStripe through 4.3.3 has Flash Clipboard Reflected XSS.