Security Advisories - PKSA-34vk-6svm-bpgy - Packagist

PKSA-34vk-6svm-bpgy Security Advisory

[MEDIUM] CVE-2020-9311: Malicious user profile information can cause login form XSS

PKSA-34vk-6svm-bpgy CVE-2020-9311 GHSA-2pw2-qpcp-m47x

Affected package: silverstripe/framework

Affected version: >=3.0.0,<3.7.5

Reported by:
GitHub, FriendsOfPHP/security-advisories