Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

PHP Framework

silverstripeCMS

Silverstripe CMS is the intuitive open-source content management system and flexible framework loved by editors and developers alike.

Official Site:

https://www.silverstripe.org/

Severity Summary:

Critical: 3 High: 6 Medium: 52 Low: 3
Reference
Title
Severity
CVE-2013-6789
silverstripeCMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2012-6458
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-14498
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-4968
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-12849
silverstripeCMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2017-5197
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2011-4958
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-5062
silverstripeCMS Other Vulnerability
Medium
CVE-2015-5063
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-8606
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2010-1593
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2010-4822
silverstripeCMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2010-4823
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2010-4824
silverstripeCMS Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2010-5078
silverstripeCMS Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2010-5079
silverstripeCMS Cryptographic Issues Vulnerability
Medium
CVE-2010-5080
silverstripeCMS Credentials Management Errors Vulnerability
Medium
CVE-2010-5087
silverstripeCMS Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2010-5088
silverstripeCMS Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2010-5089
silverstripeCMS Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2010-5090
silverstripeCMS Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2010-5091
silverstripeCMS Improper Control of Generation of Code (Code Injection) Vulnerability
Medium
CVE-2010-5093
silverstripeCMS Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2010-5094
silverstripeCMS Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2010-5095
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2010-5187
silverstripeCMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2010-5188
silverstripeCMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2011-4959
silverstripeCMS Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2011-4961
silverstripeCMS Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2011-4962
silverstripeCMS Improper Input Validation Vulnerability
Medium