CVE-2012-0976
SilverStripe 2.4.6 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in admin/EditForm in SilverStripe 2.4.6 allows remote authenticated users with Content Authors privileges to inject arbitrary web script or HTML via the Title parameter. NOTE: some of these details are obtained from third party information.
References (11)
Scores
EPSS
0.0038
EPSS Percentile
59.2%
Classification
CWE
CWE-79
Status
published
Affected Products (2)
silverstripe/silverstripe
n/a/n/a
Timeline
Published
Feb 02, 2012
Tracked Since
Feb 18, 2026