CVE-2010-5089
SilverStripe before 2.4.2 does not properly restrict access to pages in draft mode, which allows remote attackers to obtain sensitive information.
Date published : 2012-08-26
http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.4.2