CVSS: 9.8EPSS: 94%CPEs: 2EXPL: 36CVE-2021-3129 – Laravel Ignition File Upload Vulnerability
https://notcve.org/view.php?id=CVE-2021-3129
12 Jan 2021 — Ignition before 2.5.2, as used in Laravel and other products, allows unauthenticated remote attackers to execute arbitrary code because of insecure usage of file_get_contents() and file_put_contents(). This is exploitable on sites using debug mode with Laravel before 8.4.2. Ignition versiones anteriores a 2.5.2, como es usado en Laravel y otros productos, permite a atacantes remotos no autenticados ejecutar código arbitrario debido a un uso no seguro de las funciones file_get_contents() y file_put_contents(... • https://packetstorm.news/files/id/165999 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-24940
https://notcve.org/view.php?id=CVE-2020-24940
04 Sep 2020 — An issue was discovered in Laravel before 6.18.34 and 7.x before 7.23.2. Unvalidated values are saved to the database in some situations in which table names are stripped during a mass assignment. Se detectó un problema en Laravel versiones anteriores a 6.18.34 y versiones 7.x anteriores a 7.23.2. Los valores no validados se guardan en la base de datos en algunas situaciones en las que los nombres de las tablas son eliminados durante una asignación masiva • https://blog.laravel.com/security-release-laravel-61834-7232 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-24941
https://notcve.org/view.php?id=CVE-2020-24941
04 Sep 2020 — An issue was discovered in Laravel before 6.18.35 and 7.x before 7.24.0. The $guarded property is mishandled in some situations involving requests with JSON column nesting expressions. Se detectó un problema en Laravel versiones anteriores a 6.18.35 y versiones 7.x anteriores a 7.24.0. La propiedad $guarded se maneja inapropiadamente en algunas situaciones que involucran peticiones con expresiones de anidación de columnas JSON • https://blog.laravel.com/security-release-laravel-61835-7240 • CWE-863: Incorrect Authorization •
CVSS: 8.1EPSS: 80%CPEs: 2EXPL: 13CVE-2018-15133 – Laravel Deserialization of Untrusted Data Vulnerability
https://notcve.org/view.php?id=CVE-2018-15133
09 Aug 2018 — In Laravel Framework through 5.5.40 and 5.6.x through 5.6.29, remote code execution might occur as a result of an unserialize call on a potentially untrusted X-XSRF-TOKEN value. This involves the decrypt method in Illuminate/Encryption/Encrypter.php and PendingBroadcast in gadgetchains/Laravel/RCE/3/chain.php in phpggc. The attacker must know the application key, which normally would never occur, but could happen if the attacker previously had privileged access or successfully accomplished a previous attack... • https://packetstorm.news/files/id/153641 • CWE-502: Deserialization of Untrusted Data •
CVSS: 7.5EPSS: 89%CPEs: 1EXPL: 3CVE-2017-16894 – PHP Laravel Framework 5.5.40 / 5.6.x < 5.6.30 - token Unserialize Remote Command Execution
https://notcve.org/view.php?id=CVE-2017-16894
20 Nov 2017 — In Laravel framework through 5.5.21, remote attackers can obtain sensitive information (such as externally usable passwords) via a direct request for the /.env URI. NOTE: this CVE is only about Laravel framework's writeNewEnvironmentFileWith function in src/Illuminate/Foundation/Console/KeyGenerateCommand.php, which uses file_put_contents without restricting the .env permissions. The .env filename is not used exclusively by Laravel framework. En el framework Laravel hasta la versión 5.5.21, los atacantes re... • https://packetstorm.news/files/id/153641 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14775
https://notcve.org/view.php?id=CVE-2017-14775
27 Sep 2017 — Laravel before 5.5.10 mishandles the remember_me token verification process because DatabaseUserProvider does not have constant-time token comparison. Las versiones anteriores a la 5.5.10 de Laravel gestionan incorrectamente el proceso de verificación del token remember_me porque DatabaseUserProvider no compara los tokens constantemente. • https://github.com/laravel/framework/pull/21320 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9303
https://notcve.org/view.php?id=CVE-2017-9303
29 May 2017 — Laravel 5.4.x before 5.4.22 does not properly constrain the host portion of a password-reset URL, which makes it easier for remote attackers to conduct phishing attacks by specifying an attacker-controlled host. Laravel 5.4.x anterior a 5.4.22 no restringe adecuadamente la parte del host de una URL de restablecimiento de contraseña, lo que facilitaría a un atacante remoto realizar ataques de phishing especificando un host controlado por dicho atacante. • http://www.securityfocus.com/bid/98776 • CWE-20: Improper Input Validation •