4 matches found
CVE-2024-52600
Statmatic is a Laravel and Git powered content management system CMS. Prior to version 5.17.0, assets uploaded with appropriately crafted filenames may result in them being placed in a location different than what was configured. The issue affects front-end forms with assets fields and other plac...
CVE-2024-52600
creationtimestamp| type| source ---|---|--- 2024-11-19 19:18:58+00:00| seen| https://t.me/cvedetector/11456 2024-11-20 05:08:15+00:00| seen| https://infosec.exchange/users/cve/statuses/113513548675297287...
CVE-2024-52600 Statamic CMS has Path Traversal in Asset Upload
Statmatic is a Laravel and Git powered content management system CMS. Prior to version 5.17.0, assets uploaded with appropriately crafted filenames may result in them being placed in a location different than what was configured. The issue affects front-end forms with assets fields and other plac...
CVE-2024-52600
Statamic CMS has a Path Traversal flaw in asset uploads. Before version 5.17.0, assets uploaded with crafted filenames could be placed outside the intended path, potentially affecting front-end asset forms and other upload points and possibly overwriting existing files. Traversal outside the asse...