Lucene search

K

Unisharp Security Vulnerabilities

cve
cve

CVE-2021-23814

This affects the package unisharp/laravel-filemanager from 0.0.0. The upload() function does not sufficiently validate the file type when uploading. An attacker may be able to reproduce the following steps: - Install a package with a web Laravel application. - Navigate to the Upload window -...

8.8CVSS

8.8AI Score

0.002EPSS

2021-12-17 08:15 PM
51
cve
cve

CVE-2022-40734

UniSharp laravel-filemanager (aka Laravel Filemanager) before 2.6.4 allows download?working_dir=%2F.. directory traversal to read arbitrary files, as exploited in the wild in June 2022. This is related to league/flysystem before...

6.5CVSS

6.2AI Score

0.141EPSS

2022-09-14 11:15 PM
64
In Wild
7