Lucene search
K

4 matches found

Circl
Circl
added 2024/06/22 3:14 p.m.5 views

CVE-2023-47129

creationtimestamp| type| source ---|---|--- 2024-06-22 15:14:18+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/9394 2024-08-16 08:45:55+00:00| published-proof-of-concept| https://t.me/Rootsec2/1728...

9.8CVSS8.7AI score0.01121EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/11/10 6:48 p.m.15 views

CVE-2023-47129 Statamic CMS remote code execution via front-end form uploads

Statmic is a core Laravel content management system Composer package. Prior to versions 3.4.13 and 4.33.0, on front-end forms with an asset upload field, PHP files crafted to look like images may be uploaded. This only affects forms using the "Forms" feature and not just any arbitrary form. This...

8.3CVSS7.2AI score0.01121EPSS
Exploits0References3
CVE
CVE
added 2023/11/10 6:48 p.m.88 views

CVE-2023-47129

Statamic CMS (core Laravel package) vulnerability CVE-2023-47129: front-end forms with asset upload fields can accept PHP files crafted to look like images, enabling potential code execution. Affects forms using the Form feature (not the control panel). Patched in versions 3.4.13 and 4.33.0; upgr...

9.8CVSS9.1AI score0.01121EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/11/10 6:48 p.m.47 views

CVE-2023-47129 Statamic CMS remote code execution via front-end form uploads

Statmic is a core Laravel content management system Composer package. Prior to versions 3.4.13 and 4.33.0, on front-end forms with an asset upload field, PHP files crafted to look like images may be uploaded. This only affects forms using the "Forms" feature and not just any arbitrary form. This...

8.3CVSS9.7AI score0.01121EPSS
Exploits0References3
Rows per page
Query Builder