๐ CVE-2015-8606 | SilverStripe CMS up to 3.1.15/3.2.0 ItemEditForm FailedLoginCount cross site scripting (SBV-58183)
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability classified as problematic has been found in SilverStripe CMS up to 3.1.15/3.2.0. Affected is an unknown function of the file admin/security/EditForm/field/Members/item/new/ItemEditForm. The manipulation of the argument FailedLoginCount leads to cross site scripting. This vulnerability is traded as CVE-2015-8606. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component. ...