Количество 5
Количество 5
CVE-2021-43617
Laravel Framework through 8.70.2 does not sufficiently block the upload of executable PHP content because Illuminate/Validation/Concerns/ValidatesAttributes.php lacks a check for .phar files, which are handled as application/x-httpd-php on systems based on Debian. NOTE: this CVE Record is for Laravel Framework, and is unrelated to any reports concerning incorrectly written user applications for image upload.
CVE-2021-43617
Laravel Framework through 8.70.2 does not sufficiently block the upload of executable PHP content because Illuminate/Validation/Concerns/ValidatesAttributes.php lacks a check for .phar files, which are handled as application/x-httpd-php on systems based on Debian. NOTE: this CVE Record is for Laravel Framework, and is unrelated to any reports concerning incorrectly written user applications for image upload.
CVE-2021-43617
Laravel Framework through 8.70.2 does not sufficiently block the uploa ...
GHSA-364w-9g92-3grq
Withdrawn: Laravel Framework does not sufficiently block the upload of executable PHP content.
BDU:2021-06021
Уязвимость PHP-фреймворка Laravel, связанная с неограниченной загрузкой файлов опасного типа, позволяющая нарушителю выполнить произвольный код
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-43617 Laravel Framework through 8.70.2 does not sufficiently block the upload of executable PHP content because Illuminate/Validation/Concerns/ValidatesAttributes.php lacks a check for .phar files, which are handled as application/x-httpd-php on systems based on Debian. NOTE: this CVE Record is for Laravel Framework, and is unrelated to any reports concerning incorrectly written user applications for image upload. | CVSS3: 9.8 | 50% Средний | почти 4 года назад |
 | CVE-2021-43617 Laravel Framework through 8.70.2 does not sufficiently block the upload of executable PHP content because Illuminate/Validation/Concerns/ValidatesAttributes.php lacks a check for .phar files, which are handled as application/x-httpd-php on systems based on Debian. NOTE: this CVE Record is for Laravel Framework, and is unrelated to any reports concerning incorrectly written user applications for image upload. | CVSS3: 9.8 | 50% Средний | почти 4 года назад |
| CVE-2021-43617 Laravel Framework through 8.70.2 does not sufficiently block the uploa ... | CVSS3: 9.8 | 50% Средний | почти 4 года назад |
| GHSA-364w-9g92-3grq Withdrawn: Laravel Framework does not sufficiently block the upload of executable PHP content. | 50% Средний | почти 4 года назад | |
 | BDU:2021-06021 Уязвимость PHP-фреймворка Laravel, связанная с неограниченной загрузкой файлов опасного типа, позволяющая нарушителю выполнить произвольный код | CVSS3: 9.8 | 50% Средний | почти 4 года назад |
Уязвимостей на страницу