Lucene search
+L

4 matches found

Cvelist
Cvelist
added 2026/04/22 9:25 p.m.32 views

CVE-2026-41175 Statamic: Unsafe method invocation via query value resolution allows data destruction

Statamic is a Laravel and Git powered content management system CMS. Prior to versions 5.73.20 and 6.13.0, manipulating query parameters on Control Panel and REST API endpoints, or arguments in GraphQL queries, could result in the loss of content, assets, and user accounts. The Control Panel...

8.1CVSS0.00304EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/22 9:25 p.m.7 views

CVE-2026-41175 Statamic: Unsafe method invocation via query value resolution allows data destruction

Statamic is a Laravel and Git powered content management system CMS. Prior to versions 5.73.20 and 6.13.0, manipulating query parameters on Control Panel and REST API endpoints, or arguments in GraphQL queries, could result in the loss of content, assets, and user accounts. The Control Panel...

8.1CVSS5.7AI score0.00304EPSS
Exploits0References1
OSV
OSV
added 2026/04/22 9:25 p.m.2 views

CVE-2026-41175 Statamic: Unsafe method invocation via query value resolution allows data destruction

Statamic is a Laravel and Git powered content management system CMS. Prior to versions 5.73.20 and 6.13.0, manipulating query parameters on Control Panel and REST API endpoints, or arguments in GraphQL queries, could result in the loss of content, assets, and user accounts. The Control Panel...

8.1CVSS5.9AI score0.00304EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/16 9:25 p.m.4 views

Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

Overview Affected versions of this package are vulnerable to Use of Externally-Controlled Input to Select Classes or Code 'Unsafe Reflection' via unsafe method invocation during query value resolution. An attacker can cause destruction of data, assets, and user accounts by manipulating query...

8.1CVSS5.8AI score0.00304EPSS
Exploits0References2
Rows per page
Query Builder