Name of the Vulnerable Software and Affected Versions: Silverstripe (affected versions not specified)

Description: The issue affects sites in the "dev" environment mode, allowing an XSS payload to be executed in the resulting error message when a specifically crafted URL is provided. This is a misconfiguration issue, as production websites should not be in "dev" mode.

Recommendations: Immediately switch production websites from "dev" mode to "live" mode to prevent exploitation. As a temporary workaround, consider restricting access to the website while it is in "dev" mode to minimize the risk of exploitation.