Lukereative

Name of the Vulnerable Software and Affected Versions: SilverStripe GraphQL Server versions 3.x through 3.4.1 Description: The issue concerns a permission checker not being inherited by a query subclass in the SilverStripe GraphQL Server. Recommendations: For versions 3.x through 3.4.1, update to a version where this issue is resolved, as the current version does not properly inherit permission checkers for query subclasses. At the moment, there is no information about a newer version that contains a fix for this vulnerability.