Silverstripe Schwachstellen

Version

2.3.0	16
2.3.1	16
2.4.0	16
2.3.2	14
2.3.3	14

Massnahmen

Official Fix	34
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	20

Ausnutzbarkeit

High	0
Functional	0
Proof-of-Concept	4
Unproven	0
Not Defined	50

Zugriffsart

Not Defined	0
Physical	2
Local	4
Adjacent	2
Network	46

Authentisierung

Not Defined	0
High	0
Low	10
None	44

Benutzeraktivität

Not Defined	0
Required	22
None	32

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	6
≤5	12
≤6	14
≤7	6
≤8	10
≤9	4
≤10	2

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	6
≤5	16
≤6	10
≤7	14
≤8	2
≤9	6
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	8
≤5	16
≤6	10
≤7	4
≤8	14
≤9	0
≤10	2

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	4
≤7	8
≤8	2
≤9	0
≤10	6

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	2
≤8	0
≤9	0
≤10	0

Hersteller

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	18
<2k	14
<5k	22
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploit heute

<1k	54
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (80): 0.3.3, 1.0, 2, 2.0.1, 2.0.2, 2.0.3, 2.1, 2.1.1, 2.2, 2.2.1, 2.2.2, 2.2.4, 2.3, 2.3.1, 2.3.2, 2.3.3, 2.3.4, 2.3.5, 2.3.6, 2.3.7, 2.3.8, 2.3.9, 2.3.11, 2.3.12, 2.4, 2.4.1, 2.4.2, 2.4.3, 2.4.4, 2.4.5, 2.4.6, 3, 3.0.3, 3.5, 3.5.1, 3.5.2, 3.5.3, 3.5.4, 3.5.5, 3.6, 3.6.1, 3.6.2, 3.6.3, 3.6.4, 3.6.5, 3.6.6, 3.7, 3.7.1, 3.7.2, 4, 4.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.5, 4.0.6, 4.1, 4.2, 4.2.1, 4.2.2, 4.2.3, 4.3, 4.3.1, 4.3.2, 4.3.3, 4.4, 4.4.1, 4.4.2, 4.4.3, 4.4.4, 4.5, 4.5.1, 4.6, 4.6.0-rc1, 4.7, 4.8, 4.8.1, 4.9, 4.10

Softwaretyp: Content Management System

Veröffentlicht	Base	Temp	Schwachstelle	0day	Heute	Aus	Mas	CTI	CVE
04.04.2023	5.2	5.1	SilverStripe Form Capture Form Submission Cross Site Scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-28851
09.02.2023	7.5	7.4	webbuilders-group silverstripe-kapost-bridge KapostService.php getPreview SQL Injection	$0-$5k	$0-$5k	Not Defined	Official Fix	0.17	CVE-2015-10077
05.02.2022	4.3	4.2	silverstripe-framework erweiterte Rechte	$0-$5k	Wird berechnet	Not Defined	Official Fix	0.00	CVE-2022-0227
08.10.2021	3.5	3.5	SilverStripe Cross Site Scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2021-36150
09.06.2021	5.5	5.5	SilverStripe Form Field Privilege Escalation	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-26138
09.06.2021	3.1	3.1	SilverStripe GraphQL schwache Authentisierung	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-26136
09.06.2021	5.5	5.5	SilverStripe CSSContentParser XML External Entity	$0-$5k	Wird berechnet	Not Defined	Not Defined	0.00	CVE-2020-25817
03.09.2020	5.2	5.2	silverstripe-advancedreports item Cross Site Scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-25102
15.07.2020	6.3	6.3	SilverStripe Permission Check erweiterte Rechte	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-6165
15.07.2020	6.4	6.4	SilverStripe Information Disclosure	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-6164

44 weitere Einträge werden nicht mehr angezeigt

🔒 Login Required

You need to signup and login to see more of the remaining 44 results.

◂ ZurückÜbersichtWeiter ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!