From 6ad7b5967ddd27ca72fbfa154550afd3d2614c62 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Javier=20Leonardo=20Cer=C3=B3n=20Puentes?=
 <neohitokiri@gmail.com>
Date: Wed, 29 Nov 2023 15:52:21 -0500
Subject: [PATCH] Fix cve-2023-24249

https://github.com/z-song/laravel-admin/pull/5805/files
---
 src/Form/Field/Image.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Form/Field/Image.php b/src/Form/Field/Image.php
index 67476b50..0a82f2db 100644
--- a/src/Form/Field/Image.php
+++ b/src/Form/Field/Image.php
@@ -20,7 +20,7 @@ class Image extends File
      *
      * @var string
      */
-    protected $rules = 'image';
+    protected $rules = 'image|mimes:bmp,jpg,png,jpeg,gif,svg,webp';
 
     protected function setType($type = 'image')
     {