[MEDIUM] Statamic CMS has a Path Traversal in Asset Upload

PKSA-8gf5-xvpy-gbms CVE-2024-52600 GHSA-p7f6-8mcm-fwv3

Affected version: <=5.16.0

Reported by:
GitHub

[MEDIUM] Statamic's Antlers sanitizer cannot effectively sanitize malicious SVG

PKSA-gfgd-dxd9-46qj CVE-2023-36828 GHSA-6r5g-cq4q-327g

Affected version: <4.10.0

Reported by:
GitHub