PT-2023-22484 · Laravel-S · Laravel-S

Name of the Vulnerable Software and Affected Versions: laravel-s versions prior to 3.7.36 Description: The issue is related to Local File Inclusion, which can be exploited via the /src/Illuminate/Laravel.php API endpoint. Recommendations: For versions prior to 3.7.36, update to version 3.7.36 or...

Pixel＆tonic Craft CMS 授权问题漏洞

Pixel & tonic Craft CMS is a content management system CMS from Pixel & tonic, USA. A security vulnerability exists in Craft CMS version 3.7.36, which stems from the presence of a password reset poisoning vulnerability. An attacker could exploit this vulnerability to manipulate the password reset...