32 matches found
Arbitrary File Upload
Overview unisharp/laravel-filemanager is an A file upload/editor intended for use with Laravel 5 to 6 and CKEditor / TinyMCE. Affected versions of this package are vulnerable to Arbitrary File Upload via the upload process. An attacker can execute arbitrary code by uploading a malicious file usin...
EUVD-2024-3559
Malicious code in bioql PyPI...
Exploit for CVE-2025-58440
CVE-2025-58440 Remote Code Execution RCE via Polyglot File A...
CVE-2022-40734
UniSharp laravel-filemanager aka Laravel Filemanager before 2.6.4 allows download?workingdir=%2F.. directory traversal to read arbitrary files, as exploited in the wild in June 2022. This is related to league/flysystem before 2.0.0...
Arbitrary Code Injection
Overview unisharp/laravel-filemanager is an A file upload/editor intended for use with Laravel 5 to 6 and CKEditor / TinyMCE. Affected versions of this package are vulnerable to Arbitrary Code Injection through using a valid mimetype and inserting the . character after the php file extension. Thi...
Exploit for CVE-2024-21546
CVE-2024-21546 Python Exploit 🔥 Description This Python ex...
CVE-2024-21546
Versions of the package unisharp/laravel-filemanager before 2.9.1 are vulnerable to Remote Code Execution RCE through using a valid mimetype and inserting the . character after the php file extension. This allows the attacker to execute malicious code...
UniSharp Laravel Filemanager Code Injection vulnerability
Versions of the package unisharp/laravel-filemanager before 2.9.1 are vulnerable to Remote Code Execution RCE through using a valid mimetype and inserting the . character after the php file extension. This allows the attacker to execute malicious code...
GHSA-6569-3785-R3V6 UniSharp Laravel Filemanager Code Injection vulnerability
Versions of the package unisharp/laravel-filemanager before 2.9.1 are vulnerable to Remote Code Execution RCE through using a valid mimetype and inserting the . character after the php file extension. This allows the attacker to execute malicious code...
CVE-2024-21546
Versions of the package unisharp/laravel-filemanager before 2.9.1 are vulnerable to Remote Code Execution RCE through using a valid mimetype and inserting the . character after the php file extension. This allows the attacker to execute malicious code...
CVE-2024-21546
Versions of the package unisharp/laravel-filemanager before 2.9.1 are vulnerable to Remote Code Execution RCE through using a valid mimetype and inserting the . character after the php file extension. This allows the attacker to execute malicious code...
CVE-2024-21546
The CVE-2024-21546 entry specifies a Laravel Filemanager (unisharp/laravel-filemanager) vulnerability: versions before 2.9.1 are susceptible to Remote Code Execution (RCE) via a crafted request that uses a valid mimetype and inserts a dot after the PHP file extension, enabling execution of arbitr...
CVE-2024-21546
Versions of the package unisharp/laravel-filemanager before 2.9.1 are vulnerable to Remote Code Execution RCE through using a valid mimetype and inserting the . character after the php file extension. This allows the attacker to execute malicious code...
CVE-2024-21546
Versions of the package unisharp/laravel-filemanager before 2.9.1 are vulnerable to Remote Code Execution RCE through using a valid mimetype and inserting the . character after the php file extension. This allows the attacker to execute malicious code...
laravel-filemanager 代码注入漏洞
laravel-filemanager is an open source tool from UniSharp. A security vulnerability exists in laravel-filemanager versions prior to 2.9.1 that stems from vulnerability to remote code execution attacks and allows attackers to execute malicious code...
Remote Code Execution (RCE)
Overview unisharp/laravel-filemanager is an A file upload/editor intended for use with Laravel 5 to 6 and CKEditor / TinyMCE. Affected versions of this package are vulnerable to Remote Code Execution RCE through using a valid mimetype and inserting the . character after the php file extension. Th...
GHSA-5M2H-7RF2-RPX6 UniSharp Laravel Filemanager directory traversal vulnerability
UniSharp laravel-filemanager aka Laravel Filemanager with league/flysystem version = 2.0.0...
UniSharp Laravel Filemanager directory traversal vulnerability
UniSharp laravel-filemanager aka Laravel Filemanager with league/flysystem version = 2.0.0...
CVE-2022-40734
UniSharp laravel-filemanager aka Laravel Filemanager before 2.6.4 allows download?workingdir=%2F.. directory traversal to read arbitrary files, as exploited in the wild in June 2022. This is related to league/flysystem before 2.0.0...
CVE-2022-40734
UniSharp laravel-filemanager aka Laravel Filemanager before 2.6.4 allows download?workingdir=%2F.. directory traversal to read arbitrary files, as exploited in the wild in June 2022. This is related to league/flysystem before 2.0.0...