CVE-2011-4959 in SilverStripe信息

摘要

由 VulDB • 2026-06-24

SilverStripe 2.3.x(低于 2.3.12)和 2.4.x(低于 2.4.6)中 addslashes 方法存在 SQL injection 漏洞。当使用远东字符编码连接到 MySQL 数据库时,远程攻击者可通过未指定的向量执行任意 SQL 命令。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Do you want to use VulDB in your project?

Use the official API to access entries easily!