CVEs-PoC/2021/CVE-2021-23814.md at main

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-02-12 18:42:46 +00:00

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

1.3 KiB

Raw Permalink Blame History

CVE-2021-23814

Description

This affects versions of the package unisharp/laravel-filemanager before 2.6.2. The upload() function does not sufficiently validate the file type when uploading.

An attacker may be able to reproduce the following steps:

Install a package with a web Laravel application.
Navigate to the Upload window
Upload an image file, then capture the request
Edit the request contents with a malicious file (webshell)
Enter the path of file uploaded on URL - Remote Code Execution

Note: Prevention for bad extensions can be done by using a whitelist in the config file(lfm.php). Corresponding document can be found in here.

POC

Reference

https://security.snyk.io/vuln/SNYK-PHP-UNISHARPLARAVELFILEMANAGER-1567199
https://snyk.io/vuln/SNYK-PHP-UNISHARPLARAVELFILEMANAGER-1567199

Github

https://github.com/Yucaerin/laravel

1.3 KiB Raw Permalink Blame History

CVE-2021-23814

Description

POC

Reference

Github

1.3 KiB

Raw Permalink Blame History