CVE-2019-12205

Name of the Vulnerable Software and Affected Versions SilverStripe versions 3.0.0 through 4.3.3 SilverStripe versions 4.3.4 silverstripe/framework versions prior to 4.3.5 silverstripe/framework version 4.4.4 and earlier, except 4.3.5 silverstripe/admin versions prior to 1.3.5

Description The issue is related to Flash Clipboard Reflected XSS. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For SilverStripe versions 3.0.0 through 4.3.3, update to version 4.3.5 or later. For silverstripe/framework versions prior to 4.3.5, update to version 4.3.5 or later. For silverstripe/admin versions prior to 1.3.5, update to version 1.3.5 or later. For SilverStripe version 4.3.4, update to version 4.3.5 or later. For silverstripe/framework version 4.4.4 and earlier, except 4.3.5, update to version 4.3.5 or later.