CVE-2020-9309

Name of the Vulnerable Software and Affected Versions Silverstripe CMS versions prior to 4.6

Description The issue allows for script execution from malicious upload contents under allowed file extensions. For example, HTML code in a TXT file can be executed when stored as protected or draft files, due to MIME detection causing browsers to execute the file contents. This can occur when uploads are stored as protected or draft files, which are allowed by default for authorized users only, but can also be enabled through custom logic or modules like silverstripe/userforms.

Recommendations For Silverstripe CMS versions prior to 4.6, consider configuring MIME whitelists rather than extension whitelists to prevent this issue, or use the silverstripe/mimevalidator module which can provide this functionality. As a temporary workaround, consider restricting the upload of files with potentially executable contents until a patch is available.