Количество 2
Количество 2
CVE-2023-47129
Statmic is a core Laravel content management system Composer package. Prior to versions 3.4.13 and 4.33.0, on front-end forms with an asset upload field, PHP files crafted to look like images may be uploaded. This only affects forms using the "Forms" feature and not just _any_ arbitrary form. This does not affect the control panel. This issue has been patched in 3.4.13 and 4.33.0.
GHSA-72hg-5wr5-rmfc
Statamic CMS remote code execution via front-end form uploads
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-47129 Statmic is a core Laravel content management system Composer package. Prior to versions 3.4.13 and 4.33.0, on front-end forms with an asset upload field, PHP files crafted to look like images may be uploaded. This only affects forms using the "Forms" feature and not just _any_ arbitrary form. This does not affect the control panel. This issue has been patched in 3.4.13 and 4.33.0. | CVSS3: 8.3 | 5% Низкий | около 2 лет назад |
| GHSA-72hg-5wr5-rmfc Statamic CMS remote code execution via front-end form uploads | CVSS3: 8.3 | 5% Низкий | около 2 лет назад |
Уязвимостей на страницу