๐Ÿ” CVE Alert

CVE-2026-54242

MEDIUM 4.9

Statamic: Server-Side Request Forgery via Glide (DNS rebinding)

CVSS Score
4.9
EPSS Score
0.0%
EPSS Percentile
0th

Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.24 and 6.20.1, the Glide image proxy's URL validation in src/Imaging/RemoteUrlValidator.php and src/Imaging/GuzzleAdapter.php could be bypassed using DNS rebinding. The remote hostname was validated as publicly routable, but resolved again when the image was actually fetched, so an attacker controlling the hostname's DNS could rebind it to an internal address after validation and cause the server to make HTTP requests to internal addresses, including loopback, private network, and cloud metadata endpoints. This affects sites that pass user-supplied URLs to Glide. This issue is fixed in versions 5.73.24 and 6.20.1.

CWE CWE-367 CWE-918
Vendor statamic
Product cms
Published Jul 17, 2026
Stay Ahead of the Next One

Get instant alerts for statamic cms

Be the first to know when new medium vulnerabilities affecting statamic cms are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None

Affected Versions

statamic / cms
< 5.73.24 >= 6.0.0, < 6.20.1

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/statamic/cms/security/advisories/GHSA-v5c4-wcpj-x73m github.com: https://github.com/statamic/cms/pull/14761 github.com: https://github.com/statamic/cms/commit/d8f4575c425e2932f22ac030568e990be0dae2da github.com: https://github.com/statamic/cms/releases/tag/v5.73.24 github.com: https://github.com/statamic/cms/releases/tag/v6.20.1