Description
In SilverStripe through 4.6.0-rc1, a FormField with square brackets in the field name skips validation.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP-Polls Cross-Site Scripting (2.69)
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-1806)
Drupal Core 7.x Directory Traversal (7.0 - 7.66)
LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-1000658)
WordPress Plugin WP e-Commerce-Clockwork SMS Cross-Site Scripting (2.0.5)