CVE-2019-12203

CVE-2019-12203

EPSS 0.4%

SilverStripe through 4.3.3 allows session fixation in the "change password" form.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://forum.silverstripe.org/c/releases https://www.silverstripe.org/download/security-releases/https://www.silverstripe.org/download/security-releases/CVE-2019-12203