Lucene search
Veracode Vulnerability DatabaseVERACODE:7267HistoryAug 10, 2018 - 10:23 a.m.
Remote Code Execution (RCE)
2018-08-1010:23:09
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
20
EPSS
0.968
Percentile
99.7%
laravel/framework is vulnerable to remote code execution (RCE). It can occur because there is an unserialized call on the potentially untrusted X-XSRF-TOKEN value. The attacker can execute arbitrary code when decrypting certain files if they have access to the application key.
Related
debiancve
debiancve
CVE-2018-15133
2018-08-09 19:29:00
cvelist
cvelist
CVE-2018-15133
2018-08-09 19:00:00
osv
osv
Laravel Framework RCE Vulnerability
2022-05-14 00:56:30
CVE-2018-15133
2018-08-09 19:29:00
cve
cve
CVE-2018-15133
2018-08-09 19:29:00
cisa_kev
cisa_kev
Laravel Deserialization of Untrusted Data Vulnerability
2024-01-16 00:00:00
rapid7blog
rapid7blog
nessus
nessus
Laravel Framework < 5.5.41 / 5.6.x < 5.6.30 RCE
2024-04-15 00:00:00
nvd
nvd
CVE-2018-15133
2018-08-09 19:29:00
checkpoint_advisories
checkpoint_advisories
Laravel Framework Remote Code Execution (CVE-2018-15133)
2021-06-30 00:00:00
github
github
Laravel Framework RCE Vulnerability
2022-05-14 00:56:30
prion
prion
Remote code execution
2018-08-09 19:29:00
zdt
zdt
PHP Laravel Framework Token Unserialize Remote Command Execution Exploit
2019-07-15 00:00:00
attackerkb
attackerkb
Laravel Framework Unserialize Token RCE (CVE-2018-15133)
2018-08-09 00:00:00
packetstorm
packetstorm
PHP Laravel Framework Token Unserialize Remote Command Execution
2019-07-15 00:00:00
metasploit
metasploit
PHP Laravel Framework token Unserialize Remote Command Execution
2019-07-07 14:50:13
thn
thn
AndroxGh0st Malware Targets Laravel Apps to Steal Cloud Credentials
2024-03-21 12:48:00
ics
ics
Known Indicators of Compromise Associated with Androxgh0st Malware
2024-01-16 12:00:00
exploitdb
exploitdb
impervablog
impervablog