4 matches found
CVE-2023-47129
creationtimestamp| type| source ---|---|--- 2024-06-22 15:14:18+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/9394 2024-08-16 08:45:55+00:00| published-proof-of-concept| https://t.me/Rootsec2/1728...
CVE-2023-47129 Statamic CMS remote code execution via front-end form uploads
Statmic is a core Laravel content management system Composer package. Prior to versions 3.4.13 and 4.33.0, on front-end forms with an asset upload field, PHP files crafted to look like images may be uploaded. This only affects forms using the "Forms" feature and not just any arbitrary form. This...
CVE-2023-47129
Statamic CMS (core Laravel package) vulnerability CVE-2023-47129: front-end forms with asset upload fields can accept PHP files crafted to look like images, enabling potential code execution. Affects forms using the Form feature (not the control panel). Patched in versions 3.4.13 and 4.33.0; upgr...
CVE-2023-47129 Statamic CMS remote code execution via front-end form uploads
Statmic is a core Laravel content management system Composer package. Prior to versions 3.4.13 and 4.33.0, on front-end forms with an asset upload field, PHP files crafted to look like images may be uploaded. This only affects forms using the "Forms" feature and not just any arbitrary form. This...