CVE-2015-8606 (silverstripe)

Posted on 2016년 4월 14일2016년 4월 14일 by admin

Multiple cross-site scripting (XSS) vulnerabilities in SilverStripe CMS & Framework before 3.1.16 and 3.2.x before 3.2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Locale or (2) FailedLoginCount parameter to admin/security/EditForm/field/Members/item/new/ItemEditForm.

Source: CVE-2015-8606 (silverstripe)

답글 남기기 응답 취소