SQL injection vulnerability in File::find (filesystem/File.php) in SilverStripe prior to 2.3.1 allows remote malicious users to execute arbitrary SQL commands via the filename parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
silverstripe silverstripe 2.3.0 |
||
silverstripe silverstripe 2.1.0 |
||
silverstripe silverstripe 2.0.1 |
||
silverstripe silverstripe 2.0.0 |
||
silverstripe silverstripe 2.2.2 |
||
silverstripe silverstripe 2.2.1 |
||
silverstripe silverstripe 2.2.0 |
||
silverstripe silverstripe 2.1.1 |
||
silverstripe silverstripe 2.3.1 |
||
silverstripe silverstripe |
||
silverstripe silverstripe 2.2.4 |
||
silverstripe silverstripe 2.0.2 |