2012-08-26 18:00:00
redhat
PUBLISHED
SilverStripe before 2.4.2 does not properly restrict access to pages in draft mode, which allows remote attackers to obtain sensitive information.