SilverStripe HTML Injection and Cross-Site Scripting Vulnerabilities

Bugtraq ID: 37923
Class: Input Validation Error
CVE: CVE-2010-1593
Remote: Yes
Local: No
Published: Jan 22 2010 12:00AM
Updated: Apr 13 2015 09:03PM
Credit: Moritz Naumann
Vulnerable: SilverStripe SilverStripe CMS 2.0.1
SilverStripe SilverStripe CMS 2.0
SilverStripe SilverStripe 2.4 -alpha 1
SilverStripe SilverStripe 2.3.4
SilverStripe SilverStripe 2.3.1
SilverStripe SilverStripe 2.3
SilverStripe SilverStripe 2.0
SilverStripe SilverStripe 2.2.2-rc2
SilverStripe SilverStripe 2.2.2-rc1
Not Vulnerable: SilverStripe SilverStripe 2.3.5


 

Privacy Statement
Copyright 2010, SecurityFocus