Any tier · 20 specialized tests

Statamic Security

Antlers SSTI, Glide SSRF, CP exposure, flat-file content leaks

€99 Add to Scan

What Gets Tested

Antlers template-engine SSTI probe
Glide image-manipulation SSRF (CVE-2024-35189)
Content API permission matrix
Control Panel exposure + account enumeration (CVE-2023-30855)
Assets Manager path traversal (CVE-2023-38700, CVE-2024-41994)
Flat-file content leakage (/content/, /storage/)
Static-cache poisoning via Host header
Composer.lock addon CVE correlation
GraphQL introspection / schema leak
Laravel-baseline checks (APP_KEY, Ignition, Telescope)

How It Works

1

Detection

Weighted-signal match for Statamic (CP paths, /vendor/statamic/, Antlers error signatures, Glide URLs).

2

Attack Surface

Enumerate Content API endpoints, probe Antlers reflection, Glide SSRF, Assets traversal.

3

Chain Analysis

Compose findings into end-to-end kill chains (e.g. Antlers-RCE via APP_KEY leak).

Compliance Coverage

OWASP-A03 (Injection) OWASP-A05 (Misconfiguration) WSTG-INFO-08

Statamic Security

€99

Any tier · One-time per scan

20 specialized tests + AI-powered analysis

Start Your Scan

Select this addon when configuring your scan

Related Add-Ons

Laravel/PHP Security

€89

Framework-specific security testing for Laravel applications

Filament (Laravel Admin) Security

€109

Livewire CSRF, property hydration, Filament Resources authz, multi-tenancy bypass