CVE-2024-24570

Name of the Vulnerable Software and Affected Versions Statamic versions prior to 3.4.17 Statamic versions prior to 4.46.0

Description The issue allows HTML files crafted to look like jpg files to be uploaded, enabling cross-site scripting (XSS) attacks. This affects front-end forms with asset fields without mime type validation, asset fields in the control panel, and the asset browser in the control panel. If the XSS is crafted in a specific way, the "copy password reset link" feature can be exploited to gain access to a user's password reset token and their account. The authorized user must execute the XSS for the vulnerability to occur.

Recommendations For versions prior to 3.4.17, update to version 3.4.17 or later to patch the XSS vulnerability and disable the copy password reset link functionality. For versions prior to 4.46.0, update to version 4.46.0 or later to patch the XSS vulnerability and disable the copy password reset link functionality.