Vulnerability Database
296,147
Total vulnerabilities in the database
CVE-2022-38462
Silverstripe silverstripe/framework through 4.11 is vulnerable to XSS by carefully crafting a return URL on a /dev/build or /Security/login request.
| Software | From | Fixed in |
|---|---|---|
silverstripe / framework
|
4.0.0 | 4.11.13 |
|
silverstripe / framework
|
- | 4.11.13 |
|
silverstripe / framework
|
3.0.0 | 3.7.7.x |
- https://forum.silverstripe.org/c/releases
- https://github.com/FriendsOfPHP/security-advisories/blob/master/silverstripe/framework/CVE-2022-38462.yaml
- https://www.silverstripe.org/blog/tag/release
- https://www.silverstripe.org/download/security-releases/
- https://www.silverstripe.org/download/security-releases/cve-2022-38462