CMS
statamic/cms
The core Laravel CMS Composer package
#statamic#cms#laravel#laravel-package#composer-package#flat-file-cms#laravel-cms#php#vuejs#headless#api-rest#jamstack#ssg#graphql#flatfilecms#flatfile#content-management-system#php8
スコア
90
/ 100
Star
4,806
Fork
626
Open Issue
226
サイズ
74MB
言語
PHP ★
最終push
0 日前
Docker
—
採点内訳
過去CVE 20件 (やや多い)
✓直近 push: 0 日前
✓得意言語 (PHP)
✓オープンissue 226件
✓中規模 (74MB)
✓Docker 未対応
—1k–10k: 初心者ベスト (★4,806)
✓※ 各項目の重みは「採点ルール」を参照。合計は 0 で底打ち。
過去の SecurityAdvisory (20 件)
- Server-Side Request Forgery via Glide
- Email enumeration via forgot password endpoint
- Unsafe method invocation via query value resolution allows data destruction
- Missing authorization in revision controllers allows unauthorized content access
- Sensitive configuration values exposed to content editors via Antlers-enabled fields
- Open redirect on unauthenticated endpoints via URL parsing differential
- Live preview token bypasses content protection for unrelated entries
- Reflected XSS via unescaped redirect parameter in password reset form tag
- Markdown preview endpoint exposes sensitive user data
- Missing authorization check on taxonomy term creation via fieldtype
- Path traversal in file dictionary fieldtype
- Stored XSS via SVG Sanitization Bypass
- Privilege escalation via stored cross-site scripting
- Privilege escalation via stored cross-site scripting
- Remote code execution via Antlers-enabled control panel inputs
- Missing authorization allows access to email addresses
- Server-Side Request Forgery via Glide
- Privilege escalation via elevated session bypass
- Account takeover via password reset link injection
- Privilege escalation via stored cross-site scripting