VYPR

Packagist (Composer) package

silverstripe/recipe-cms

pkg:composer/silverstripe/recipe-cms

Vulnerabilities (1)

  • CVE-2020-6165Jul 15, 2020
    affected >= 4.5.0, < 4.5.3fixed 4.5.3

    SilverStripe 4.5.0 allows attackers to read certain records that should not have been placed into a result set. This affects silverstripe/recipe-cms. The automatic permission-checking mechanism in the silverstripe/graphql module does not provide complete protection against lists