An attacker can display a link to a third party website on a login screen by convincing a legitimate content author to follow a specially crafted link.
Upgrade to silverstripe/framework 4.12.5 or above to remedy the vulnerability.
silverstripe/framework
Reporter: Matthew Dekker
An attacker can display a link to a third party website on a login screen by convincing a legitimate content author to follow a specially crafted link.
Upgrade to
silverstripe/framework4.12.5 or above to remedy the vulnerability.Reporter: Matthew Dekker