Vulnerability Database
296,748
Total vulnerabilities in the database
CVE-2010-5095
Cross-site scripting (XSS) vulnerability in SilverStripe 2.3.x before 2.3.6 allows remote attackers to inject arbitrary web script or HTML via vectors related to DataObjectSet pagination.
| Software | From | Fixed in |
|---|---|---|
| silverstripe / silverstripe | 2.3.4 | 2.3.4.x |
| silverstripe / silverstripe | 2.3.0-rc2 | 2.3.0-rc2.x |
| silverstripe / silverstripe | 2.3.1-rc2 | 2.3.1-rc2.x |
| silverstripe / silverstripe | 2.3.0-rc3 | 2.3.0-rc3.x |
| silverstripe / silverstripe | 2.3.3 | 2.3.3.x |
| silverstripe / silverstripe | 2.3.1 | 2.3.1.x |
| silverstripe / silverstripe | 2.3.1-rc1 | 2.3.1-rc1.x |
| silverstripe / silverstripe | 2.3.5 | 2.3.5.x |
| silverstripe / silverstripe | 2.3.0 | 2.3.0.x |
| silverstripe / silverstripe | 2.3.2 | 2.3.2.x |
| silverstripe / silverstripe | 2.3.0-rc1 | 2.3.0-rc1.x |
- http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.3.6
- http://groups.google.com/group/silverstripe-announce/browse_thread/thread/c75fbd7926ed2725?tvc=2&fwc=1
- http://secunia.com/advisories/38697
- http://www.openwall.com/lists/oss-security/2012/04/30/1
- http://www.openwall.com/lists/oss-security/2012/04/30/3
- http://www.openwall.com/lists/oss-security/2012/05/01/3
- http://www.osvdb.org/62541
- http://www.securityfocus.com/bid/38394
- http://www.silverstripe.org/security-releases
- https://exchange.xforce.ibmcloud.com/vulnerabilities/56546
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime