silverstripe/framework Security Advisories for 5.3.21 (3)
-
CVE-2026-54720 - XSS attack through media embed
PKSA-x6tz-s6v3-ynk3 CVE-2026-54720
Affected version: <6.2.2
Reported by:
FriendsOfPHP/security-advisories -
[MEDIUM] CVE-2025-30148 - XSS vulnerability in HTML editor
PKSA-y2dn-63zz-mp8n CVE-2025-30148 GHSA-rhx4-hvx9-j387
Affected version: <5.3.23
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[MEDIUM] SS-2025-001 - User enumeration via timing attack
PKSA-7qg6-pyzm-bc35 GHSA-256q-hx8w-xcqx
Affected version: <5.3.23
Reported by:
GitHub, FriendsOfPHP/security-advisories