Silverstripe Cms Vulnerabilità

Sequenza temporale

Versione

4.04
4.14
4.24
4.34
4.44

Contromisure

Official Fix2
Temporary Fix0
Workaround0
Unavailable0
Not Defined10

Sfruttabilità

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined12

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent0
Network12

Autenticazione

Not Defined0
High0
Low6
None6

Interazione dell'utente

Not Defined0
Required8
None4

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤56
≤60
≤74
≤82
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤56
≤60
≤74
≤82
≤90
≤100

VulDB

≤10
≤20
≤30
≤46
≤52
≤60
≤70
≤84
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤66
≤72
≤80
≤92
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k6
<2k4
<5k2
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k12
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (40): 3, 3.0, 3.1, 3.1.1, 3.1.2, 3.1.3, 3.1.4, 3.1.5, 3.1.6, 3.1.7, 3.1.8, 3.1.9, 3.1.11, 3.1.12, 3.1.13, 3.1.14, 3.1.15, 3.2, 3.3, 3.4, 3.4.1, 3.4.2, 3.4.3, 3.5, 3.5.1, 3.5.2, 3.5.3, 3.5.4, 3.6, 4, 4.0, 4.1, 4.2, 4.3, 4.4, 4.4.1, 4.4.2, 4.4.3, 4.4.4, 4.5

Tipo di software: Content Management System

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
22/11/20224.44.4SilverStripe CMS Custom Meta Tag cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-37421
17/03/20214.84.8Silverstripe CMS silverstripe-queuedjobs cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-27938
15/07/20204.44.4SilverStripe CMS Login Form cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2020-9311
15/07/20206.56.5SilverStripe CMS Upload Stored escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2020-9309
15/07/20206.66.6SilverStripe CMS Cache Poisoning escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-19326
12/10/20175.35.1SilverStripe CMS Password Reset rivelazione di un 'informazione$0-$5kCalcoloNot DefinedOfficial Fix0.00CVE-2017-12849
15/09/20175.25.1SilverStripe CMS SVG Document add cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2017-14498
06/03/20175.24.9SilverStripe CMS SVG Element cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2017-5197
13/04/20165.25.1SilverStripe CMS ItemEditForm cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2015-8606
24/06/20154.34.3SilverStripe CMS / Framework install.php cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2015-5063

1 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 1 results.

altre voci di Silverstripe

PrecedenteVisione D'insiemeIl prossimo

Do you need the next level of professionalism?

Upgrade your account now!