Silverstripe · Silverstripe · CVE-2019-12205
**Name of the Vulnerable Software and Affected Versions**
SilverStripe versions 3.0.0 through 4.3.3
SilverStripe versions 4.3.4
silverstripe/framework versions prior to 4.3.5
silverstripe/framework version 4.4.4 and earlier, except 4.3.5
silverstripe/admin versions prior to 1.3.5
**Description**
The issue is related to Flash Clipboard Reflected XSS. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.
**Recommendations**
For SilverStripe versions 3.0.0 through 4.3.3, update to version 4.3.5 or later.
For silverstripe/framework versions prior to 4.3.5, update to version 4.3.5 or later.
For silverstripe/admin versions prior to 1.3.5, update to version 1.3.5 or later.
For SilverStripe version 4.3.4, update to version 4.3.5 or later.
For silverstripe/framework version 4.4.4 and earlier, except 4.3.5, update to version 4.3.5 or later.