{"id":"CVE-2021-36150","details":"SilverStripe Framework through 4.8.1 allows XSS.","aliases":["BIT-silverstripe-2021-36150","GHSA-j66h-cc96-c32q"],"modified":"2026-04-10T04:35:25.961451Z","published":"2021-10-07T14:15:08.160Z","references":[{"type":"ADVISORY","url":"https://github.com/silverstripe/silverstripe-framework/releases"},{"type":"ADVISORY","url":"https://www.silverstripe.org/download/security-releases/CVE-2021-36150"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/silverstripe/silverstripe-framework","events":[{"introduced":"0"},{"last_affected":"e8129996324a4be6c8dfed280e9978cd428ec09b"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"4.8.1"}]}}],"versions":["2.2.0-rc1","2.2.2-rc1","2.3.0-rc1","3.0.0-alpha1","3.0.0-alpha2","3.0.0-beta1","3.0.0-beta2","3.0.0-beta3","3.0.0-rc1","4.0.0-alpha1","4.0.0-alpha2","4.0.0-alpha3","4.0.0-alpha4","4.0.0-alpha6","4.0.0-alpha7","4.0.0-beta1","4.0.0-beta2","4.0.0-beta3","4.1.0-rc1","4.6.0-beta1","4.7.0-beta1","4.8.0-beta1","4.8.0-rc1","4.8.1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-36150.json","unresolved_ranges":[{"events":[{"introduced":"1.0.0"},{"fixed":"1.8.1"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}