Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
silverstripe silverstripe 2.1.1 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-12149
SQL injection vulnerability in silverstripe/restfulserver module 1.0.x prior to 1.0.9, 2.0.x prior to 2.0.4, and 2.1.x prior to 2.1.2 and silverstripe/registry module 2.1.x prior to 2.1.1 and 2.2.x prior to 2.2.1 allows malicious users to execute arbitrary SQL commands.
Silverstripe Registry
Silverstripe Restfulserver
NA
CVE-2010-5090
SilverStripe prior to 2.4.2 allows remote authenticated users to change administrator passwords via vectors related to admin/security.
Silverstripe Silverstripe 2.3.4
Silverstripe Silverstripe 2.3.0
Silverstripe Silverstripe 2.3.7
Silverstripe Silverstripe 2.3.10
Silverstripe Silverstripe 2.1.0
Silverstripe Silverstripe 2.2.0
Silverstripe Silverstripe 2.3.1
Silverstripe Silverstripe 2.3.3
Silverstripe Silverstripe 2.2.2
Silverstripe Silverstripe 2.0.0
Silverstripe Silverstripe 2.3.8
Silverstripe Silverstripe 2.4.0
Silverstripe Silverstripe
Silverstripe Silverstripe 2.2.4
Silverstripe Silverstripe 2.3.5
Silverstripe Silverstripe 2.3.9
Silverstripe Silverstripe 2.2.1
Silverstripe Silverstripe 2.1.1
Silverstripe Silverstripe 2.3.6
Silverstripe Silverstripe 2.0.2
Silverstripe Silverstripe 2.0.1
Silverstripe Silverstripe 2.3.2
NA
CVE-2010-5089
SilverStripe prior to 2.4.2 does not properly restrict access to pages in draft mode, which allows remote malicious users to obtain sensitive information.
Silverstripe Silverstripe 2.3.4
Silverstripe Silverstripe 2.3.0
Silverstripe Silverstripe 2.3.7
Silverstripe Silverstripe 2.3.10
Silverstripe Silverstripe 2.1.0
Silverstripe Silverstripe 2.2.0
Silverstripe Silverstripe 2.3.1
Silverstripe Silverstripe 2.3.3
Silverstripe Silverstripe 2.2.2
Silverstripe Silverstripe 2.0.0
Silverstripe Silverstripe 2.3.8
Silverstripe Silverstripe 2.4.0
Silverstripe Silverstripe
Silverstripe Silverstripe 2.2.4
Silverstripe Silverstripe 2.3.5
Silverstripe Silverstripe 2.3.9
Silverstripe Silverstripe 2.2.1
Silverstripe Silverstripe 2.1.1
Silverstripe Silverstripe 2.3.6
Silverstripe Silverstripe 2.0.2
Silverstripe Silverstripe 2.0.1
Silverstripe Silverstripe 2.3.2
NA
CVE-2010-1593
Multiple cross-site scripting (XSS) vulnerabilities in SilverStripe prior to 2.3.5 allow remote malicious users to inject arbitrary web script or HTML via (1) the CommenterURL parameter to PostCommentForm, and in the Forum module prior to 0.2.5 in SilverStripe prior to 2.3.5 allo...
Silverstripe Silverstripe 2.3.0
Silverstripe Silverstripe 2.1.0
Silverstripe Silverstripe 2.2.0
Silverstripe Silverstripe 2.3.1
Silverstripe Silverstripe 2.3.3
Silverstripe Silverstripe 2.2.2
Silverstripe Silverstripe 2.0.0
Silverstripe Silverstripe 2.2.4
Silverstripe Silverstripe 2.2.1
Silverstripe Silverstripe 2.1.1
Silverstripe Silverstripe
Silverstripe Silverstripe 2.0.2
Silverstripe Silverstripe 2.0.1
Silverstripe Silverstripe 2.3.2
NA
CVE-2008-6753
SQL injection vulnerability in SilverStripe prior to 2.2.2 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors related to AjaxUniqueTextField.
Silverstripe Silverstripe 2.1.0
Silverstripe Silverstripe 2.2.0
Silverstripe Silverstripe 2.0.0
Silverstripe Silverstripe
Silverstripe Silverstripe 2.1.1
Silverstripe Silverstripe 2.0.2
Silverstripe Silverstripe 2.0.1
NA
CVE-2009-1433
SQL injection vulnerability in File::find (filesystem/File.php) in SilverStripe prior to 2.3.1 allows remote malicious users to execute arbitrary SQL commands via the filename parameter.
Silverstripe Silverstripe 2.3.0
Silverstripe Silverstripe 2.1.0
Silverstripe Silverstripe 2.2.0
Silverstripe Silverstripe 2.2.2
Silverstripe Silverstripe 2.0.0
Silverstripe Silverstripe 2.2.4
Silverstripe Silverstripe 2.3.1
Silverstripe Silverstripe
Silverstripe Silverstripe 2.2.1
Silverstripe Silverstripe 2.1.1
Silverstripe Silverstripe 2.0.2
Silverstripe Silverstripe 2.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started