2 matches found
Remote Code Execution (RCE)
laravel/framework is vulnerable to remote code execution RCE. It can occur because there is an unserialized call on the potentially untrusted X-XSRF-TOKEN value. The attacker can execute arbitrary code when decrypting certain files if they have access to the application key...
Laravel framework remote code execution vulnerability
Laravel framework is a set of simple , elegant PHP Web development framework. A remote code execution vulnerability exists in Laravel framework versions 5.5.40 and earlier and versions 5.6.x through 5.6.29. The vulnerability stems from an unserialized call to an untrusted X-XSRF-TOKEN value. An...