silverstripe/assets Security Advisories for 1.10.x-dev (2)
-
[MEDIUM] CVE-2022-38147 - XSS via uploaded gpx file
PKSA-h12n-xqnh-nnc1 CVE-2022-38147 GHSA-vv3r-fxqp-vr3f
Affected version: >=1.0.0,<1.11.1
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[MEDIUM] CVE-2022-38724 - XSS in shortcodes
PKSA-vdrm-g673-qq8n CVE-2022-38724 GHSA-9cx2-hj6m-fv58
Affected version: >=1.0.0,<1.11.1
Reported by:
GitHub, FriendsOfPHP/security-advisories