SS-2018-013: Passwords sent back to browsers under some circumstances

PKSA-th4m-g9z7-6q8r

Affected package: silverstripe/framework

Affected version: >=3.5.5,<3.7.0|>=4.0.3,<4.0.4|>=4.1.0,<4.1.1

Reported by:
FriendsOfPHP/security-advisories