Every CVE whose affected-product data names Silverstripe Graphql, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-28104 — CVSS 7.5 (high): `silverstripe/graphql` serves Silverstripe data as GraphQL representations. In versions 4.2.2 and 4.1.1, an attacker could use a specially…
CVE-2023-40180 — CVSS 7.5 (high): silverstripe-graphql is a package which serves Silverstripe data in GraphQL representations. An attacker could use a recursive graphql…
CVE-2023-44401 — CVSS 5.3 (medium): The Silverstripe CMS GraphQL Server serves Silverstripe data as GraphQL representations. In versions 4.0.0 prior to 4.3.7 and 5.0.0 prior…