PT-2024-40525 · Silverstripe · Silverstripe/Subsites
Published
2024-05-28
·
Updated
2024-05-28
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
silverstripe/subsites versions prior to 2.1.1
Description:
A potential SQL injection issue has been identified in the silverstripe/subsites module. The issue has been fixed in version 2.1.1.
Recommendations:
For versions prior to 2.1.1, update to version 2.1.1 to resolve the issue.
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Silverstripe/Subsites