In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsLearn about Missing Authorization vulnerabilities in an interactive lesson.
Start learningUpgrade silverstripe/framework
to version 3.1.20, 3.2.5, 3.3.3, 3.4.1 or higher.
silverstripe/framework is a PHP framework forming the base for the SilverStripe CMS.
Affected versions of this package are vulnerable to Missing Authorization due to improper access control checks in the canView
method. An attacker can view any report by accessing the report's URL directly without proper permissions.