Package impact
Packagist / statamic/cms
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-11422 | high | 8.8 | 8.8 | 9y ago | Statamic framework Incorrect Permission Assignment | |||
| CVE-2026-41175 | high | 8.1 | 8.1 | 1mo ago | Statamic: Unsafe method invocation via query value resolution allows data destruction | |||
| CVE-2026-45660 | medium | 5.4 | 5.4 | 17d ago | Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.22 and 6.18.1, the Glide image proxy's URL validation could be bypassed using an IP representation that wasn't nor… | |||
| CVE-2026-44306 | medium | 5.3 | 5.3 | 29d ago | Statamic CMS vulnerable to email enumeration via forgot password endpoint |