CVE-2026-25633 in Statamicinfo

Zusammenfassung

von MITRE • 11.02.2026

Statamic is a, Laravel + Git powered CMS designed for building websites. Prior to 5.73.6 and 6.2.5, users without permission to view assets are able are able to download them and view their metadata. Logged-out users and users without permission to access the control panel are unable to take advantage of this. This has been fixed in 5.73.6 and 6.2.5.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

GitHub M

Reservieren

04.02.2026

Veröffentlichung

11.02.2026

Moderieren

akzeptiert

Eintrag

VDB-345649

CPE

bereit

CWE

CWE-862 (bestätigt)

CVSS

4.3 (CNA)

EPSS

0.00014

KEV

nein

Aktivitäten

very low

Sektor

Lawfirm, Hostingprovider, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-25633
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-25633
CVE Details	https://www.cvedetails.com/cve/CVE-2026-25633/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!