Silverstripe CSRF vulnerability in GridFieldAddExistingAutocompleter

GridField does not have sufficient CSRF protection, meaning that in some cases users with CMS access can be tricked into posting unspecified data into the CMS from external websites. Amongst other default CMS interfaces, GridField is used for management of groups, users and permissions in the CMS.

The resolution for this issue is to ensure that all gridFieldAlterAction submissions are checked for the SecurityID token during submission.

Published: May 23, 2024
Updated: Jun 27, 2024
GHSA: GHSA-2hpc-mf4q-j885
Severity: Medium
Exploit:

CVSS v3:

Severity: Unknown
Score:
AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

CWEs:

CWE-352

Affected Software
References

Software	From	Fixed in
silverstripe / framework	-	3.1.17
silverstripe / framework	3.2.0	3.2.2
silverstripe / framework	3.3.0-beta1	3.3.0

https://github.com/FriendsOfPHP/security-advisories/blob/master/silverstripe/framework/SS-2016-002-1.yaml
https://github.com/silverstripe/silverstripe-framework/commit/013524af5069bb0cf909853f04418d9bef56d18c
https://github.com/silverstripe/silverstripe-framework/commit/56e92f5a32e45849cc9361c8603c31d7010c9d36
https://github.com/silverstripe/silverstripe-framework/commit/e2c77c5a8f13e901c51a3684210811559b592f0c
https://www.silverstripe.org/download/security-releases/ss-2016-002

Vulnerability Database

Silverstripe CSRF vulnerability in GridFieldAddExistingAutocompleter