CVE-2019-25673
UniSharp Laravel File Manager v2.0.0-alpha7 and v2.0 expose an arbitrary file upload vulnerability at the upload endpoint. An authenticated attacker can submit multipart form data to upload PHP files via the type parameter set to Files, then access the uploaded file in the working directory path ...