Lucene search
Veracode Vulnerability DatabaseVERACODE:33396HistoryDec 20, 2021 - 5:16 a.m.
Arbitrary File Upload
2021-12-2005:16:26
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
arbitrary file upload
remote code execution
uploadcontroller vulnerability
file validation
EPSS
0.002
Percentile
57.0%
unisharp/laravel-filemanager is vulnerable to arbitrary file upload attacks. The vulnerability exists through UploadController.php where the ‘upload()’ function does not properly validate the upload files, allowing an attacker to upload a malicious crafted file and remotely execute arbitrary code on system.
Related
osv
osv
cve
cve
CVE-2021-23814
2021-12-17 20:15:08
prion
prion
Design/Logic Flaw
2021-12-17 20:15:00
github
github
cvelist
cvelist
CVE-2021-23814 Arbitrary File Upload
2021-12-17 20:00:14
nvd
nvd
CVE-2021-23814
2021-12-17 20:15:08