Exposição de Laravel

Web frameworks
63
score de exposição
101.188
sites usam
0
em exploração
2
críticos

CVEs

31 resultados
CVE-2021-23814MEDIUMThis affects versions of the package unisharp/laravel-filemanager before 2.6.2. The upload() function does not sufficiently validate the filEPSS 1.8%CVE-2024-21546CRITICALVersions of the package unisharp/laravel-filemanager before 2.9.1 are vulnerable to Remote Code Execution (RCE) through using a valid mimetyEPSS 1.3%CVE-2026-4809CRITICALUnsafe Client MIME Type Handling Can Enable Arbitrary File Upload in plank/laravel-mediableEPSS 1.3%CVE-2024-7067MEDIUMkirilkirkov Ecommerce-Laravel-Bootstrap Cart.php getCartProductsIds deserializationEPSS 0.8%CVE-2024-7943MEDIUMitsourcecode Laravel Property Management System PropertiesController.php upload unrestricted uploadEPSS 0.7%CVE-2022-2870MEDIUMlaravel deserializationEPSS 0.7%CVE-2024-6056MEDIUMnasirkhan Laravel Starter Password Reset forgot-password observable response discrepancyEPSS 0.7%CVE-2021-4262MEDIUMlaravel-jqgrid EloquentRepositoryAbstract.php getRows sql injectionEPSS 0.6%CVE-2024-7495MEDIUMitsourcecode Laravel Accounting System HomeController.php unrestricted uploadEPSS 0.6%CVE-2022-2886MEDIUMLaravel deserializationEPSS 0.6%CVE-2024-13918HIGHLaravel Reflected XSS via Request Parameter in Debug-Mode Error PageEPSS 0.6%CVE-2024-7944MEDIUMitsourcecode Laravel Property Management System DocumentsController.php UpdateDocumentsRequest unrestricted uploadEPSS 0.5%CVE-2025-48490MEDIUMLaravel Rest Api has a Search Validation BypassEPSS 0.5%CVE-2024-13919HIGHLaravel Reflected XSS via Route Parameter in Debug-Mode Error PageEPSS 0.5%CVE-2024-7945MEDIUMitsourcecode Laravel Property Management System Notes Page create cross site scriptingEPSS 0.5%CVE-2026-48557HIGHSpatie Laravel Media Library < 11.23.0 File Upload Restriction Bypass via FileAdder.phpEPSS 0.4%CVE-2019-25673HIGHUniSharp Laravel File Manager v2.0.0-alpha7 Arbitrary File UploadEPSS 0.4%CVE-2025-49130MEDIUMLaravel Translation Manager Vulnerable to Stored Cross-site ScriptingEPSS 0.4%CVE-2025-58769LOWauth0-PHP: Improper File Type Handling in Bulk User ImportEPSS 0.3%CVE-2020-36950HIGHLaravel Nova 3.7.0 - 'range' DoSEPSS 0.3%

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →