silverstripe/graphql vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
GHSA-WJG9-V8CF-F5Q2Highsilverstripe/graphql: silverstripe/graphql Cross-Site Request Forgery vulnerabilityCVE-2023-44401Mediumsilverstripe/graphql: View permissions are bypassed for paginated lists of ORM dataCVE-2023-40180Highsilverstripe/graphql: Silverstripe GraphQL has DDOS Vulnerability due to lack of protection against recursive queriesCVE-2023-28104Highsilverstripe/graphql: DDOS attack on graphql endpointsCVE-2020-6165Mediumsilverstripe/recipe-cms: Silverstripe has Incorrect Default Permissions CVE-2019-12437Highsilverstripe/graphql: Silverstripe CSRF Protection Bypass via GraphQLCVE-2021-28661Mediumsilverstripe/graphql: SilverStripe GraphQL Server permission checker not inherited by query subclass.CVE-2020-26136Mediumsilverstripe/graphql: Authentication bypass in SilverStripe GraphQL

Stop the waste.
Protect your environment with Kodem.