GHSA-3mm9-2p44-rw39

Source

https://github.com/advisories/GHSA-3mm9-2p44-rw39

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/05/GHSA-3mm9-2p44-rw39/GHSA-3mm9-2p44-rw39.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-3mm9-2p44-rw39

Published

2024-05-22T19:03:54Z

Modified

2024-12-07T05:42:56.284253Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS Calculator

Summary

Silverstripe SiteTree Creation Permission Vulnerability

Details

A vulnerability exists in the permission validation for SiteTree object creation. By default user permissions are not validated by the SiteTree::canCreate method, unless overridden by user code or via the configuration system.

This vulnerability will allow users, or unauthenticated guests, to create new SiteTree objects in the database. This vulnerability is present when such users are given CMS access via other means, or if there is another mechanism (such as RestfulServer module) which allows model editing and relies on model-level permission checks.

This vulnerability is restricted to the creation of draft or live pages, and does not allow users to edit, publish, or unpublish existing pages.

All users should upgrade as soon as possible.

Database specific

{
    "github_reviewed_at": "2024-05-22T19:03:54Z",
    "severity": "HIGH",
    "nvd_published_at": null,
    "github_reviewed": true,
    "cwe_ids": [
        "CWE-863"
    ]
}

References

Affected packages

Packagist / silverstripe/cms

Package

Name: silverstripe/cms
Purl: pkg:composer/silverstripe/cms

Affected ranges

Type: ECOSYSTEM
Events: Introduced

3.0.0

Fixed

3.0.12

Affected versions

3.*

3.0.2.1

3.0.3-rc1

3.0.3-rc2

3.0.3

3.0.4

3.0.5

3.0.6-rc1

3.0.6-rc2

3.0.6

3.0.7-rc1

3.0.7

3.0.8

3.0.9-rc1

3.0.9

3.0.10-rc1

3.0.10

3.0.11-rc1

3.0.11

Database specific

{
    "last_known_affected_version_range": "<= 3.0.11"
}

Packagist / silverstripe/cms

Package

Name: silverstripe/cms
Purl: pkg:composer/silverstripe/cms

Affected ranges

Type: ECOSYSTEM
Events: Introduced

3.1.0

Fixed

3.1.11

Affected versions

3.*

3.1.0

3.1.1

3.1.2-rc1

3.1.2

3.1.3-rc1

3.1.3-rc2

3.1.3

3.1.4-rc1

3.1.4

3.1.5-rc1

3.1.5

3.1.6-rc1

3.1.6-rc2

3.1.6-rc3

3.1.6

3.1.7-rc1

3.1.7

3.1.8

3.1.9-rc1

3.1.9

3.1.10-rc1

3.1.10-rc2

3.1.10

3.1.11-rc1