silverstripe/graphql vulnerabilities

GraphQL server for SilverStripe models and other data

Latest version: 3.5.2

Licenses detected

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the silverstripe/graphql package. This does not include vulnerabilities belonging to this package’s dependencies.

Report new vulnerabilities
Vulnerability Vulnerable versions Snyk patch Published
  • H
Improper Access Control
>=3.0.0, <3.5.2 Not available 08 Oct, 2021
  • M
Access Restriction Bypass
>=3.0.0, <3.5.0,>=4.0.0-alpha1, <4.0.0-alpha2 Not available 09 Jun, 2021
  • M
Improper Input Validation
>=3.2.0, <3.2.4 Not available 16 Jul, 2020
  • M
Cross-site Request Forgery (CSRF)
>=3.0.0, <3.1.0,>=2.0.0, <2.0.5 Not available 19 Feb, 2020
  • H
Cross-site Request Forgery (CSRF)
>=2.0.0, <2.0.3 Not available 05 Feb, 2020