SilverStripe through 4.3.3 has incorrect access control for protected files uploaded via Upload::loadIntoFile(). An attacker may be able to guess a filename in silverstripe/assets via the AssetControlExtension.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| silverstripe/framework(Packagist) | 0 | 3.6.8 | N/A |
| silverstripe/framework(Packagist) | 3.7.0 | 3.7.4 | N/A |
| silverstripe/framework(Packagist) | 4.0.0 | 4.3.6 | N/A |
| silverstripe/framework(Packagist) | 4.4.0 | 4.4.4 | N/A |
| silverstripe/assets(Packagist) | 1.0.0 | 1.3.5 | N/A |
| silverstripe/assets(Packagist) | 1.4.0 | 1.4.4 | N/A |
CVSS Metrics
