Security Advisories - silverstripe/framework

silverstripe/framework Security Advisories for 3.1.6-rc1 (33)

[MEDIUM] CVE-2024-32981 - XSS Vulnerability with text/html base64-encoded payload

PKSA-jndv-7cgy-xwm3 CVE-2024-32981 GHSA-chx7-9x8h-r5mg

Affected version: <5.2.16

Reported by:
GitHub, FriendsOfPHP/security-advisories
SS-2024-001 - TinyMCE allows svg files linked in object tags

PKSA-8tf6-2hv5-c6tq

Affected version: <5.2.16

Reported by:
FriendsOfPHP/security-advisories
[MEDIUM] CVE-2023-48714 Record titles for restricted records can be viewed if exposed by GridFieldAddExistingAutocompleter

PKSA-vcdc-4796-kn58 CVE-2023-48714 GHSA-qm2j-qvq3-j29v

Affected version: >=3.0.0,<4.0.0|>=4.0.0,<4.13.39|>=5.0.0,<5.1.11

Reported by:
GitHub, FriendsOfPHP/security-advisories
[LOW] CVE-2023-32302 - Members with no password can be created and bypass custom login forms

PKSA-2t2m-vnwy-55q7 CVE-2023-32302 GHSA-36xx-7vf6-7mv3

Affected version: >=3.0.0,<4.13.14|>=5.0.0,<5.0.13

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SilverStripe CSV Excel Macro Injection

PKSA-4npp-z2k1-kdtx CVE-2017-18049 GHSA-2jvj-mhf2-g99w

Affected version: >=4.0.0,<4.0.1|>=3.6.0,<3.6.3|<3.5.6

Reported by:
GitHub
[MEDIUM] Silverstripe CMS Open Redirect

PKSA-ktdv-zx9y-ctn1 CVE-2015-5062 GHSA-fh35-p8ph-p545

Affected version: <=3.1.13

Reported by:
GitHub
[MEDIUM] Business Logic Errors in SilverStripe Framework

PKSA-7j38-hj68-r82v CVE-2022-0227 GHSA-32m2-9f76-4gv8

Affected version: <4.10.1

Reported by:
GitHub
[MEDIUM] CVE-2020-26138 FormField: with square brackets in field name skips validation

PKSA-pq7g-1pwh-dw3n CVE-2020-26138 GHSA-7mv4-4xpg-xq44

Affected version: >=3.0.0,<4.0.0|>=4.0.0,<4.7.4

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] CVE-2020-9311: Malicious user profile information can cause login form XSS

PKSA-34vk-6svm-bpgy CVE-2020-9311 GHSA-2pw2-qpcp-m47x

Affected version: >=3.0.0,<3.7.5

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] CVE-2019-19326: Web Cache Poisoning through HTTPRequestBuilder

PKSA-75gp-x5bj-hcwc CVE-2019-19326 GHSA-q9ff-3q93-fm8m

Affected version: >=4.0.0,<4.4.7|>=4.5.0,<4.5.4|>=3.0.0,<3.7.5

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] Lack of access control on upoaded files

PKSA-5yvt-vswv-zn54 CVE-2019-12245 GHSA-jvx5-rm6q-gx7p

Affected version: >=4.4.0,<4.4.4|>=4.0.0,<4.3.6|>=3.7.0,<3.7.4|<3.6.8

Reported by:
GitHub
[MEDIUM] CVE-2019-12205: Clipboard Reflected XSS

PKSA-89c6-sr3z-fq77 CVE-2019-12205 GHSA-rfvw-5848-gxc5

Affected version: >=3.0.0,<3.9.99|>=4.3.0,<4.3.5|>=4.4.0,<4.4.4

Reported by:
GitHub, FriendsOfPHP/security-advisories
[CRITICAL] CVE-2019-5715: Reflected SQL Injection through Form and DataObject

PKSA-sn55-3v1d-5xkw CVE-2019-5715 GHSA-wvfw-w3x6-g526

Affected version: >=3.0.0,<3.6.7|>=3.7.0,<3.7.3|>=4.0.0,<4.0.7|>=4.1.0,<4.1.5|>=4.2.0,<4.2.4|>=4.3.0,<4.3.1

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2016-010: ReadOnly transformation for formfields exploitable

PKSA-j8mg-1yjt-xbcg GHSA-xpff-c35g-j3cr

Affected version: >=3.1.0,<3.1.21|>=3.2.0,<3.2.6|>=3.3.0,<3.3.4|>=3.4.0,<3.4.2

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2016-016: XSS In CMSSecurity BackURL

PKSA-k5zs-4c34-gd54 GHSA-hhvj-mcrx-3vcf

Affected version: >=3.1.0,<3.1.21|>=3.2.0,<3.2.6|>=3.3.0,<3.3.4|>=3.4.0,<3.4.2

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2016-003: Hostname, IP and Protocol Spoofing through HTTP Headers

PKSA-bnbw-tbzq-5ykk GHSA-r85g-7jpv-8xrx

Affected version: >=3.1.0,<=3.1.16|>=3.2.0,<=3.2.1|>3.2,<3.3.0

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2015-028: Missing security check on dev/build/defaults

PKSA-tdvc-fx4y-y9yf GHSA-4h54-vwx9-3vr3

Affected version: >=3.1.0,<=3.1.16|>=3.2.0,<=3.2.1|>3.2,<3.3.0

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2016-002: CSRF vulnerability in GridFieldAddExistingAutocompleter

PKSA-gg94-wpcm-tbtp GHSA-g84q-cq55-xwgp

Affected version: >=3.1.0,<=3.1.16|>=3.2.0,<=3.2.1|>3.2,<3.3.0

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2015-027: HtmlEditor embed url sanitisation

PKSA-7xtp-kt8p-p95z GHSA-crr3-h4m8-7f56

Affected version: >=3.0.0,<3.1.0|>=3.1.0,<3.2.0|>=3.2.0,<3.2.1

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2015-026: Form field validation message XSS vulnerability

PKSA-mjkn-vqsc-z7x7 GHSA-52cx-hpc5-cxwc

Affected version: >=3.0.0,<3.1.0|>=3.1.0,<3.1.16|>=3.2.0,<3.2.1

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2015-016: XSS in install.php

PKSA-js58-hfd4-mkkf GHSA-f43j-8hq4-2xj9

Affected version: >=3.1.0,<3.1.14

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2015-015: XSS in dev/build returnURL Parameter

PKSA-k8vj-swsf-842v GHSA-r3pr-fh25-wrfc

Affected version: >=3.1.0,<3.1.14

Reported by:
GitHub, FriendsOfPHP/security-advisories
[LOW] SS-2015-013: X-Forwarded-Host request hostname injection

PKSA-9c27-c7kd-s22x GHSA-vh7q-j8p5-2h4h

Affected version: >=3.1.0,<3.1.13

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2015-014: Vulnerability on 'isDev', 'isTest' and 'flush' $_GET validation

PKSA-wt32-ns28-f45d GHSA-ph62-fv59-vf9h

Affected version: >=3.0.0,<=3.0.13|>=3.1.0,<3.1.13

Reported by:
GitHub, FriendsOfPHP/security-advisories
[HIGH] SS-2015-012: External redirection risk in Security?ReturnURL

PKSA-td9q-mf48-mqpm GHSA-xx4r-5265-48j6

Affected version: >=3.0.0,<=3.0.13|>=3.1.0,<=3.1.12

Reported by:
GitHub, FriendsOfPHP/security-advisories
[HIGH] SS-2015-011: Potential SQL Injection Vulnerability

PKSA-bkm6-5mwx-3kd3 GHSA-7m2v-x7rg-5hm5

Affected version: >=3.0.0,<=3.0.13|>=3.1.0,<3.1.13

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2015-010: XSS in Director::force_redirect()

PKSA-4bc1-163x-xfz9 GHSA-m2hh-2m46-x6j5

Affected version: >=3.1.0,<3.1.12

Reported by:
GitHub, FriendsOfPHP/security-advisories
[LOW] SS-2015-009: XSS In rewritten hash links

PKSA-z1m7-vnpc-524q GHSA-5r8w-66hq-rc39

Affected version: >=3.0.0,<=3.0.12|>=3.1.0,<=3.1.11

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2014-015: IE requests not properly behaving with rewritehashlinks

PKSA-dwpn-yczp-hpvw GHSA-34q6-xqxh-gq39

Affected version: >=3.0.0,<=3.0.12|>=3.1.0,<=3.1.11

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2015-004: TreeDropdownField and TreeMultiSelectField XSS

PKSA-4b5m-tw4q-3fmq GHSA-qp29-wcc2-vmpc

Affected version: >=3.1.0,<=3.1.9

Reported by:
GitHub, FriendsOfPHP/security-advisories
[HIGH] SS-2015-006: XSS In GridField print

PKSA-ypv8-3cmn-66k7 GHSA-4qx8-j9vh-2628

Affected version: >=3.1.0,<3.1.10

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2015-007: XSS In FormAction

PKSA-r8bz-4tyw-cqq7 GHSA-88jp-9jrv-6368

Affected version: >=3.1.0,<=3.1.9

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] SS-2014-017: XML Quadratic Blowup Attack

PKSA-xhsq-x1jb-f31d GHSA-87pf-7x99-5xc4

Affected version: >=3.1.0,<=3.1.11

Reported by:
GitHub, FriendsOfPHP/security-advisories

silverstripe/framework Security Advisories for 3.1.6-rc1 (33)

[MEDIUM] CVE-2024-32981 - XSS Vulnerability with text/html base64-encoded payload

SS-2024-001 - TinyMCE allows svg files linked in object tags

[MEDIUM] CVE-2023-48714 Record titles for restricted records can be viewed if exposed by GridFieldAddExistingAutocompleter

[LOW] CVE-2023-32302 - Members with no password can be created and bypass custom login forms

[MEDIUM] SilverStripe CSV Excel Macro Injection

[MEDIUM] Silverstripe CMS Open Redirect

[MEDIUM] Business Logic Errors in SilverStripe Framework

[MEDIUM] CVE-2020-26138 FormField: with square brackets in field name skips validation

[MEDIUM] CVE-2020-9311: Malicious user profile information can cause login form XSS

[MEDIUM] CVE-2019-19326: Web Cache Poisoning through HTTPRequestBuilder

[MEDIUM] Lack of access control on upoaded files

[MEDIUM] CVE-2019-12205: Clipboard Reflected XSS

[CRITICAL] CVE-2019-5715: Reflected SQL Injection through Form and DataObject

[MEDIUM] SS-2016-010: ReadOnly transformation for formfields exploitable

[MEDIUM] SS-2016-016: XSS In CMSSecurity BackURL

[MEDIUM] SS-2016-003: Hostname, IP and Protocol Spoofing through HTTP Headers

[MEDIUM] SS-2015-028: Missing security check on dev/build/defaults

[MEDIUM] SS-2016-002: CSRF vulnerability in GridFieldAddExistingAutocompleter

[MEDIUM] SS-2015-027: HtmlEditor embed url sanitisation

[MEDIUM] SS-2015-026: Form field validation message XSS vulnerability

[MEDIUM] SS-2015-016: XSS in install.php

[MEDIUM] SS-2015-015: XSS in dev/build returnURL Parameter

[LOW] SS-2015-013: X-Forwarded-Host request hostname injection

[MEDIUM] SS-2015-014: Vulnerability on 'isDev', 'isTest' and 'flush' $_GET validation

[HIGH] SS-2015-012: External redirection risk in Security?ReturnURL

[HIGH] SS-2015-011: Potential SQL Injection Vulnerability

[MEDIUM] SS-2015-010: XSS in Director::force_redirect()

[LOW] SS-2015-009: XSS In rewritten hash links

[MEDIUM] SS-2014-015: IE requests not properly behaving with rewritehashlinks

[MEDIUM] SS-2015-004: TreeDropdownField and TreeMultiSelectField XSS

[HIGH] SS-2015-006: XSS In GridField print

[MEDIUM] SS-2015-007: XSS In FormAction

[MEDIUM] SS-2014-017: XML Quadratic Blowup Attack