CVE-2019-12204

CVE-2019-12204

EPSS 1.5%

In SilverStripe through 4.3.3, a missing warning about leaving install.php in a public webroot can lead to unauthenticated admin access.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://forum.silverstripe.org/c/releases https://www.silverstripe.org/download/security-releases/https://www.silverstripe.org/download/security-releases/CVE-2019-12204