Security Advisories - PKSA-y2dn-63zz-mp8n - Packagist

PKSA-y2dn-63zz-mp8n Security Advisory

[MEDIUM] CVE-2025-30148 - XSS vulnerability in HTML editor

PKSA-y2dn-63zz-mp8n CVE-2025-30148 GHSA-rhx4-hvx9-j387

Affected package: silverstripe/framework

Affected version: <5.3.23

Reported by:
GitHub, FriendsOfPHP/security-advisories