Known Vulnerabilities for Assets by Silverstripe

Listed below are 2 of the newest known vulnerabilities associated with "Assets" by "Silverstripe".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2026-40265 json Note Mark is an open-source note-taking application. In versions 0.19.1 and prior, the asset download endpoint at /api/notes/... Not Provided 2026-04-17 2026-04-16
CVE-2026-39847 json Emmett is a full-stack Python web framework designed with simplicity. From 2.5.0 to before 2.8.1, the RSGI static handler for... Not Provided 2026-04-07 2026-04-08
CVE-2026-35383 json Bentley Systems iTwin Platform exposed a Cesium ion access token in the source of some web pages. An unauthenticated attacker... Not Provided 2026-04-02 2026-04-02
CVE-2026-34442 json FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.211, host header mani... Not Provided 2026-03-31 2026-04-01
CVE-2026-24749 json The Silverstripe Assets Module is a required component of Silverstripe Framework. In versions prior to 2.4.5 and 3.0.0-rc1 th... Not Provided 2026-04-16 2026-04-16
CVE-2026-5471 json A vulnerability was detected in Investory Toy Planet Trouble App up to 1.5.5 on Android. Impacted is an unknown function of t... Not Provided 2026-04-03 2026-04-04
CVE-2026-0651 json A path traversal vulnerability was identified TP-Link Tapo C260 v1, D235 v1 and C520WS v2.6 within the HTTP server’s handli... Not Provided 2026-02-10 2026-04-02
CVE-2025-69893 json A side-channel vulnerability exists in the implementation of BIP-39 mnemonic processing, as observed in Trezor One v1.13.0 to... Not Provided 2026-04-14 2026-04-16
CVE-2025-40893 json A Stored HTML Injection vulnerability was discovered in the Asset List functionality due to improper validation of network tr... Not Provided 2025-12-18 2026-04-14
CVE-2022-38724 json Silverstripe silverstripe/framework through 4.11.0, silverstripe/assets through 1.11.0, and silverstripe/asset-admin through ... 5.4 - MEDIUM 2022-11-23 2022-11-28
Results limited to 10 most recent vulnerabilities
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report