{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-18T18:03:38.365","vulnerabilities":[{"cve":{"id":"CVE-2010-5095","sourceIdentifier":"secalert@redhat.com","published":"2012-08-26T18:55:01.527","lastModified":"2025-04-11T00:51:21.963","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in SilverStripe 2.3.x before 2.3.6 allows remote attackers to inject arbitrary web script or HTML via vectors related to DataObjectSet pagination."},{"lang":"es","value":"Vulnerabilidad de ejecución de código en sitios cruzados (XSS) en SilverStripe v2.3.x anterior a v2.3.6 permite a atacantes remotos inyectar código web o HTML arbitrario a través de vectores relacionados con la paginación DataObjectSet."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:silverstripe:silverstripe:2.3.0:*:*:*:*:*:*:*","matchCriteriaId":"24734325-97DA-4B2C-B192-3F4B83CCF0C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc1:*:*:*:*:*:*","matchCriteriaId":"D875C510-39F2-4726-9DBD-3D95A5CB3D5D"},{"vulnerable":true,"criteria":"cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc2:*:*:*:*:*:*","matchCriteriaId":"BE8C544D-E233-488D-B768-8C077BB79338"},{"vulnerable":true,"criteria":"cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc3:*:*:*:*:*:*","matchCriteriaId":"26E1807F-7DEB-4519-95B9-4FA647C7D477"},{"vulnerable":true,"criteria":"cpe:2.3:a:silverstripe:silverstripe:2.3.1:*:*:*:*:*:*:*","matchCriteriaId":"609BEA7D-81F2-4DFE-AB2A-157A6B7DE348"},{"vulnerable":true,"criteria":"cpe:2.3:a:silverstripe:silverstripe:2.3.1:rc1:*:*:*:*:*:*","matchCriteriaId":"FAB67F4E-0E56-4597-BD9B-90D07685D7F7"},{"vulnerable":true,"criteria":"cpe:2.3:a:silverstripe:silverstripe:2.3.1:rc2:*:*:*:*:*:*","matchCriteriaId":"AA541F02-F78A-4E43-8212-690810311187"},{"vulnerable":true,"criteria":"cpe:2.3:a:silverstripe:silverstripe:2.3.2:*:*:*:*:*:*:*","matchCriteriaId":"7856E216-D7B7-48A5-9D20-9F1973DA005D"},{"vulnerable":true,"criteria":"cpe:2.3:a:silverstripe:silverstripe:2.3.3:*:*:*:*:*:*:*","matchCriteriaId":"DF4FF5F5-6565-4EA1-8099-2C4C964DA006"},{"vulnerable":true,"criteria":"cpe:2.3:a:silverstripe:silverstripe:2.3.4:*:*:*:*:*:*:*","matchCriteriaId":"7E0AD691-1BA2-4D8B-935C-B2C7A31BD5ED"},{"vulnerable":true,"criteria":"cpe:2.3:a:silverstripe:silverstripe:2.3.5:*:*:*:*:*:*:*","matchCriteriaId":"2AD30632-B31E-4425-827E-205351ABECE6"}]}]}],"references":[{"url":"http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.3.6","source":"secalert@redhat.com"},{"url":"http://groups.google.com/group/silverstripe-announce/browse_thread/thread/c75fbd7926ed2725?tvc=2&fwc=1","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/38697","source":"secalert@redhat.com","tags":["Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2012/04/30/1","source":"secalert@redhat.com"},{"url":"http://www.openwall.com/lists/oss-security/2012/04/30/3","source":"secalert@redhat.com"},{"url":"http://www.openwall.com/lists/oss-security/2012/05/01/3","source":"secalert@redhat.com"},{"url":"http://www.osvdb.org/62541","source":"secalert@redhat.com"},{"url":"http://www.securityfocus.com/bid/38394","source":"secalert@redhat.com"},{"url":"http://www.silverstripe.org/security-releases","source":"secalert@redhat.com"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/56546","source":"secalert@redhat.com"},{"url":"http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.3.6","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://groups.google.com/group/silverstripe-announce/browse_thread/thread/c75fbd7926ed2725?tvc=2&fwc=1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/38697","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2012/04/30/1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2012/04/30/3","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2012/05/01/3","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.osvdb.org/62541","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/38394","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.silverstripe.org/security-releases","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/56546","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}