// For flags

CVE-2021-3129

Laravel Ignition File Upload Vulnerability

Severity Score

9.8
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

26
*Multiple Sources

Exploited in Wild

Yes
*KEV

Decision

-
*SSVC
Descriptions

Ignition before 2.5.2, as used in Laravel and other products, allows unauthenticated remote attackers to execute arbitrary code because of insecure usage of file_get_contents() and file_put_contents(). This is exploitable on sites using debug mode with Laravel before 8.4.2.

Ignition versiones anteriores a 2.5.2, como es usado en Laravel y otros productos, permite a atacantes remotos no autenticados ejecutar código arbitrario debido a un uso no seguro de las funciones file_get_contents() y file_put_contents(). Esto es explotable en sitios que usan el modo de depuración con Laravel versiones anteriores a 8.4.2

Laravel Ignition contains a file upload vulnerability that allows unauthenticated remote attackers to execute malicious code due to insecure usage of file_get_contents() and file_put_contents().

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2021-01-12 CVE Reserved
  • 2021-01-12 CVE Published
  • 2021-01-14 First Exploit
  • 2023-09-18 Exploited in Wild
  • 2023-10-09 KEV Due Date
  • 2024-08-03 CVE Updated
  • 2024-09-11 EPSS Updated
CWE
CAPEC
References (27)
URL Tag Source
URL Date SRC
https://www.exploit-db.com/exploits/49424 2021-01-14
https://github.com/zhzyker/CVE-2021-3129 2021-09-09
https://github.com/SNCKER/CVE-2021-3129 2021-01-24
https://github.com/joshuavanderpoll/CVE-2021-3129 2024-08-10
https://github.com/SecPros-Team/laravel-CVE-2021-3129-EXP 2021-01-25
https://github.com/knqyf263/CVE-2021-3129 2021-10-09
https://github.com/Y0s9/CVE-2021-3129 2021-02-21
https://github.com/FunPhishing/Laravel-8.4.2-rce-CVE-2021-3129 2021-02-14
https://github.com/Axianke/CVE-2021-3129 2024-01-15
https://github.com/shadowabi/Laravel-CVE-2021-3129 2022-09-29
https://github.com/0nion1/CVE-2021-3129 2022-10-11
https://github.com/cuongtop4598/CVE-2021-3129-Script 2022-04-08
https://github.com/ajisai-babu/CVE-2021-3129-exp 2023-03-04
https://github.com/idea-oss/laravel-CVE-2021-3129-EXP 2021-07-22
https://github.com/wmasday/CVE-2021-3129 2023-07-27
https://github.com/miko550/CVE-2021-3129 2023-07-26
https://github.com/keyuan15/CVE-2021-3129 2023-03-11
https://github.com/cc3305/CVE-2021-3129 2024-07-27
https://github.com/hupe1980/CVE-2021-3129 2022-09-30
https://github.com/Zoo1sondv/CVE-2021-3129 2023-06-03
https://github.com/JacobEbben/CVE-2021-3129 2022-09-03
https://github.com/piperpwn/CVE-2021-3129- 2024-07-16
https://github.com/banyaksepuh/Mass-CVE-2021-3129-Scanner 2023-10-22
http://packetstormsecurity.com/files/162094/Ignition-2.5.1-Remote-Code-Execution.html 2024-08-03
http://packetstormsecurity.com/files/165999/Ignition-Remote-Code-Execution.html 2024-08-03
https://www.ambionics.io/blog/laravel-debug-rce 2024-08-03
URL Date SRC
https://github.com/facade/ignition/pull/334 2022-02-22
URL Date SRC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Facade
Search vendor "Facade"
 Ignition
Search vendor "Facade" for product "Ignition"
 < 2.5.2
Search vendor "Facade" for product "Ignition" and version " < 2.5.2"
laravel
Affected
in Laravel
Search vendor "Laravel"
 Laravel
Search vendor "Laravel" for product "Laravel"
 < 8.4.2
Search vendor "Laravel" for product "Laravel" and version " < 8.4.2"
-
Safe