CVE-2021-36150
packagist/silverstripe/secureassets
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
SilverStripe Framework suffers from a XSS vulnerablity.
All versions starting from 1.0.0 before 1.8.1, all versions after 1.9.0 up to 4.8.1
Unfortunately, there is no solution available yet.
2021-10-18
source |