Packagist (Composer) package
silverstripe/reports
pkg:composer/silverstripe/reports
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-29885 | — | < 5.2.3 | 5.2.3 | Jul 17, 2024 | silverstripe/reports is an API for creating backend reports in the Silverstripe Framework. In affected versions reports can be accessed by their direct URL by any user who has access to view the reports admin section, even if the `canView()` method for that report returns `false` |
- CVE-2024-29885Jul 17, 2024affected < 5.2.3fixed 5.2.3
silverstripe/reports is an API for creating backend reports in the Silverstripe Framework. In affected versions reports can be accessed by their direct URL by any user who has access to view the reports admin section, even if the `canView()` method for that report returns `false`