Packagist (Composer) package
silverstripe/versioned-admin
pkg:composer/silverstripe/versioned-admin
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-38145 | — | >= 1.0.0, < 1.11.1 | 1.11.1 | Nov 23, 2022 | Silverstripe silverstripe/framework through 4.11 allows XSS (issue 1 of 3) via remote attackers adding a Javascript payload to a page's meta description and get it executed in the versioned history compare view. |
- CVE-2022-38145Nov 23, 2022affected >= 1.0.0, < 1.11.1fixed 1.11.1
Silverstripe silverstripe/framework through 4.11 allows XSS (issue 1 of 3) via remote attackers adding a Javascript payload to a page's meta description and get it executed in the versioned history compare view.