Developer Tools
Snyk Learn
Snyk Advisor
Code Checker
About Snyk
Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
Reset
All Vulnerabilities
Expand this section
APPLICATION
Cargo
cocoapods
Composer
Go
hex
Maven
npm
NuGet
pip
pub
RubyGems
Swift
Unmanaged (C/C++)
Expand this section
OPERATING SYSTEM
All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi
Report a new vulnerability
VULNERABILITY
AFFECTS
TYPE
PUBLISHED
M
Cross-site Scripting (XSS)
andrewhaine/silverstripe-form-capture
<1.1.0
>=2.0.0, <2.2.5
Composer
4 Apr 2023
M
Cross-site Scripting (XSS)
bigfork/silverstripe-form-capture
<3.1.1
Composer
4 Apr 2023
M
Incorrect Authorization
silverstripe/admin
>=1.0.0, <1.13.19
>=2.0.0, <2.1.8
Composer
24 Jan 2024
M
Cross-site Scripting (XSS)
silverstripe/admin
>=1.0.0, <1.13.6
Composer
24 Aug 2023
M
Cross-site Scripting (XSS)
silverstripe/admin
>=1.0.0, <1.11.3
Composer
21 Nov 2022
M
Cross-site Scripting (XSS)
silverstripe/admin
<1.8.1
Composer
8 Oct 2021
H
Cross-site Scripting (XSS)
silverstripe/admin
>=1.0.3, <1.0.4
>=1.1.0, <1.1.1
Composer
5 Feb 2020
M
Cross-site Scripting (XSS)
silverstripe/assets
>=1.0.0, <1.11.1
Composer
21 Nov 2022
M
Cross-site Scripting (XSS)
silverstripe/assets
>=1.0.0, <1.11.1
Composer
21 Nov 2022
M
Information Exposure
silverstripe/assets
<1.10.1
Composer
28 Jun 2022
M
Information Exposure
silverstripe/assets
>=1.0.0, <1.4.7
>=1.5.0, <1.5.2
Composer
15 Apr 2020
L
Improper Access Control
silverstripe/assets
<1.4.5
Composer
26 Sep 2019
M
Incorrect Access Control
silverstripe/assets
<1.3.5
Composer
25 Sep 2019
C
Cross-site Scripting (XSS)
silverstripe-australia/advancedreports
>=1.1.1
Composer
21 Sep 2020
M
Open Redirect
silverstripe/cms
>=0.0.0
Composer
11 Sep 2023
M
Cross-site Scripting (XSS)
silverstripe/cms
<3.4.4
>=3.5.0, <3.5.2
Composer
9 Aug 2023
M
Cross-site Scripting (XSS)
silverstripe/cms
<3.1.16
>=3.2.0, <3.2.1
Composer
2 Aug 2023
M
Cross-site Scripting (XSS)
silverstripe/cms
<3.6.1
Composer
27 Jul 2023
L
Cross-site Scripting (XSS)
silverstripe/cms
>=3.0.0, <4.11.3
Composer
21 Nov 2022
M
Timing Attack
silverstripe/cms
<3.5.5
>=3.6.0, <3.6.1
Composer
27 Feb 2018
M
Insufficient Permission Validation
silverstripe/cms
>=3.1.0, <3.1.11
<3.0.12
Composer
19 Mar 2015
M
Cross-site Scripting (XSS)
silverstripe/cms
<3.1.10
Composer
12 Feb 2015
M
Cross-site Scripting (XSS)
silverstripe/cms
<3.1.10
Composer
12 Feb 2015
M
Cross-site Request Forgery (CSRF)
silverstripe/forum
<=0.6.2
>=0.7.0, <0.7.4
Composer
14 Sep 2015
M
Information Exposure
silverstripe/framework
>=3.0.0, <4.13.39
>=5.0.0, <5.1.11
Composer
30 Jan 2024
M
Open Redirect
silverstripe/framework
>=0.0.0
Composer
11 Sep 2023
M
Weak Password Requirements
silverstripe/framework
<4.13.14
>=5.0.0, <5.0.13
Composer
1 Aug 2023
M
Insecure Permissions
silverstripe/framework
>=4.0.0, <4.12.5
Composer
27 Apr 2023
M
Open Redirect
silverstripe/framework
>=4.0.0, <4.12.5
Composer
27 Apr 2023
M
Cross-site Scripting (XSS)
silverstripe/framework
>=3.0.0, <4.11.13
Composer
21 Nov 2022