CVE-2025-30148

{"id": "CVE-2025-30148", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 2.5, "exploitabilityScore": 2.8}, {"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.3}]}, "published": "2025-04-10T13:15:51.930", "references": [{"url": "https://github.com/silverstripe/silverstripe-framework/commit/e99cfd62d160d145a76fcf9631e6b11226e42358", "tags": ["Patch"], "source": "[email protected]"}, {"url": "https://github.com/silverstripe/silverstripe-framework/security/advisories/GHSA-rhx4-hvx9-j387", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "https://www.silverstripe.org/download/security-releases/cve-2025-30148", "tags": ["Vendor Advisory"], "source": "[email protected]"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Silverstripe Framework is a PHP framework which powers the Silverstripe CMS. Prior to 5.3.23, bad actor with access to edit content in the CMS could send a specifically crafted encoded payload to the server, which could be used to inject a JavaScript payload on the front end of the site. The payload would be sanitized on the client-side, but server-side sanitization doesn't catch it. The server-side sanitization logic has been updated to sanitize against this attack. This vulnerability is fixed in 5.3.23."}, {"lang": "es", "value": "Silverstripe Framework es un marco PHP que impulsa el CMS Silverstripe. Antes de la versi\u00f3n 5.3.23, un actor malicioso con acceso para editar contenido en el CMS pod\u00eda enviar un paylaod codificado manipulado al servidor, que pod\u00eda usarse para inyectar un payload JavaScript en el front-end del sitio. El payload se depurar\u00eda en el lado del cliente, pero la depuraci\u00f3n del lado del servidor no la detecta. Se ha actualizado la l\u00f3gica de depuraci\u00f3n del lado del servidor para protegerlo contra este ataque. Esta vulnerabilidad se corrigi\u00f3 en 5.3.23."}], "lastModified": "2025-09-04T17:13:05.550", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:silverstripe:framework:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1D693E4-8FA0-48AD-B54F-56096595DD01", "versionEndIncluding": "5.3.23"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}