silverstripe Cyber Security Vulnerability Stats and Metrics

Access Control Flaw in Silverstripe Framework Assets Module

CVE-2026-24749

SilverstripeSilverstripe-assets5.3MEDIUM

JavaScript Injection Vulnerability in Silverstripe CMS by Silverstripe

CVE-2025-30148

SilverstripeSilverstripe-framework5.4MEDIUM

XSS Vulnerability in Silverstripe Elemental Page Type

CVE-2025-25197

SilverstripeSilverstripe-elemental5.4MEDIUM

HTML Injection Vulnerability in SilverStripe Asset Gallery

CVE-2024-47605

SilverstripeSilverstripe-asset-admin5.4MEDIUM

Cross-Site Scripting Vulnerability in Silverstripe Framework by Silverstripe

CVE-2024-53277

SilverstripeSilverstripe-framework5.4MEDIUM

Server-Side Sanitization Fix Released for Silverstripe CMS to Address XSS Vulnerability

CVE-2024-32981

SilverstripeSilverstripe-framework5.4MEDIUM

Silverstripe Reports API Vulnerability - Direct URL Access Could Allow Unauthorized Access

CVE-2024-29885

SilverstripeSilverstripe-reports4.3MEDIUM

No permission checks for editing/deleting records with CSV import form

CVE-2023-49783

SilverstripeSilverstripe-admin4.3MEDIUM

Record titles for restricted records can be viewed if exposed by GridFieldAddExistingAutocompleter

CVE-2023-48714

SilverstripeSilverstripe-framework4.3MEDIUM

Silverstripe GraqhQL's view permissions are bypassed for paginated lists of ORM data

CVE-2023-44401

SilverstripeSilverstripe-graphql5.3MEDIUM

Denial of service vulnerability in silverstripe-graphql via recursive queries

CVE-2023-40180

SilverstripeSilverstripe-graphql7.5HIGH

Silverstripe Framework has open redirect vulnerability on CMSSecurity relogin screen

CVE-2023-22729

SilverstripeSilverstripe-framework5.4MEDIUM

Silverstripe Framework has missing permission check of canView in GridFieldPrintButton

CVE-2023-22728

SilverstripeSilverstripe-framework4.3MEDIUM

silverstripe/graphql Denial of Service vulnerability

CVE-2023-28104

SilverstripeSilverstripe-graphql7.5HIGH

Insecure Permissions in Silverstripe Subsites by Silverstripe

CVE-2022-42949

SilverstripeSubsites7.5HIGH

Cross-Site Scripting in SilverStripe Framework, Assets, and Asset Admin

CVE-2022-38724

SilverstripeAsset Admin5.4MEDIUM

Cross-Site Scripting Vulnerability in Silverstripe CMS by Silverstripe

CVE-2022-37421

SilverstripeSilverstripe5.4MEDIUM

XSS Vulnerability in Silverstripe Framework by Silverstripe

CVE-2022-37429

SilverstripeFramework5.4MEDIUM

Cross-Site Scripting Vulnerability in Silverstripe Framework

CVE-2022-37430

SilverstripeFramework5.4MEDIUM

Cross-Site Scripting Vulnerability in SilverStripe Framework by SilverStripe

CVE-2022-38145

SilverstripeFramework5.4MEDIUM

Cross-Site Scripting Vulnerability in Silverstripe Framework

CVE-2022-38147

SilverstripeFramework5.4MEDIUM

Cross-Site Scripting Vulnerability in Silverstripe Framework by Silverstripe

CVE-2022-38462

SilverstripeFramework6.1MEDIUM

Cross-Site Scripting Vulnerability in Silverstripe Framework by Silverstripe

CVE-2022-38146

SilverstripeFramework5.4MEDIUM

SQL Injection Vulnerability in SilverStripe Framework Affects Multiple Versions

CVE-2022-38148

SilverstripeFramework8.8HIGH

Stored XSS Vulnerability in SilverStripe Framework

CVE-2022-28803

SilverstripeSilverstripe5.4MEDIUM

Vulnerability Published:

Sort By:

16 April 2026

Access Control Flaw in Silverstripe Framework Assets Module

10 April 2025

JavaScript Injection Vulnerability in Silverstripe CMS by Silverstripe

XSS Vulnerability in Silverstripe Elemental Page Type

14 January 2025

HTML Injection Vulnerability in SilverStripe Asset Gallery

Cross-Site Scripting Vulnerability in Silverstripe Framework by Silverstripe

17 July 2024

Server-Side Sanitization Fix Released for Silverstripe CMS to Address XSS Vulnerability

Silverstripe Reports API Vulnerability - Direct URL Access Could Allow Unauthorized Access

23 January 2024

No permission checks for editing/deleting records with CSV import form

Record titles for restricted records can be viewed if exposed by GridFieldAddExistingAutocompleter

Silverstripe GraqhQL's view permissions are bypassed for paginated lists of ORM data

16 October 2023

Denial of service vulnerability in silverstripe-graphql via recursive queries

26 April 2023

Silverstripe Framework has open redirect vulnerability on CMSSecurity relogin screen

Silverstripe Framework has missing permission check of canView in GridFieldPrintButton

16 March 2023

silverstripe/graphql Denial of Service vulnerability

21 December 2022

Insecure Permissions in Silverstripe Subsites by Silverstripe

23 November 2022

Cross-Site Scripting in SilverStripe Framework, Assets, and Asset Admin

Cross-Site Scripting Vulnerability in Silverstripe CMS by Silverstripe

XSS Vulnerability in Silverstripe Framework by Silverstripe

Cross-Site Scripting Vulnerability in Silverstripe Framework

Cross-Site Scripting Vulnerability in SilverStripe Framework by SilverStripe

Cross-Site Scripting Vulnerability in Silverstripe Framework

22 November 2022

Cross-Site Scripting Vulnerability in Silverstripe Framework by Silverstripe

21 November 2022

Cross-Site Scripting Vulnerability in Silverstripe Framework by Silverstripe

SQL Injection Vulnerability in SilverStripe Framework Affects Multiple Versions

29 June 2022

Stored XSS Vulnerability in SilverStripe Framework