Описание
SilverStripe before 2.4.2 does not properly restrict access to pages in draft mode, which allows remote attackers to obtain sensitive information.
SilverStripe before 2.4.2 does not properly restrict access to pages in draft mode, which allows remote attackers to obtain sensitive information.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2010-5089
- http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.4.2
- http://open.silverstripe.org/changeset/110757
- http://www.openwall.com/lists/oss-security/2012/04/30/1
- http://www.openwall.com/lists/oss-security/2012/04/30/3
- http://www.openwall.com/lists/oss-security/2012/05/01/3
EPSS
Процентиль: 62%
0.00435
Низкий
CVE ID
Связанные уязвимости
nvd
больше 13 лет назад
SilverStripe before 2.4.2 does not properly restrict access to pages in draft mode, which allows remote attackers to obtain sensitive information.
debian
больше 13 лет назад
SilverStripe before 2.4.2 does not properly restrict access to pages i ...
EPSS
Процентиль: 62%
0.00435
Низкий