Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2021-43617

Published: 14/11/2021 Updated: 18/11/2021
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Framework

Vulnerability Summary

Laravel Framework up to and including 8.70.2 does not sufficiently block the upload of executable PHP content because Illuminate/Validation/Concerns/ValidatesAttributes.php lacks a check for .phar files, which are handled as application/x-httpd-php on systems based on Debian. NOTE: this CVE Record is for Laravel Framework, and is unrelated to any reports concerning incorrectly written user applications for image upload.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

laravel framework

Vendor Advisories

Debian CVElist Bug Report Logs: php-illuminate-validation: CVE-2021-43617: Failure to block the upload of executable PHP content
Debian Bug report logs - #1002728 php-illuminate-validation: CVE-2021-43617: Failure to block the upload of executable PHP content Package: php-illuminate-validation; Maintainer for php-illuminate-validation is Debian PHP PEAR Maintainers <pkg-php-pear@listsaliothdebianorg>; Source for php-illuminate-validation is src:php-laravel ...

Github Repositories

https://github.com/Sybelle03/CVE-2021-43617

This is a reproduction of PHP Laravel 8.70.1 - Cross Site Scripting (XSS) to Cross Site Request Forgery (CSRF) vulnerability

CVE-2021-43617 This is a reproduction of PHP Laravel 8701 - Cross Site Scripting (XSS) to Cross Site Request Forgery (CSRF) vulnerability Description The vulnerability exploits the fact that we can bypass laravel image file upload functionality to upload arbitary files on the web server which let us run arbitary javascript and bypass the csrf token Steps to reproduce: Creati

References

CWE-434https://salsa.debian.org/php-team/php/-/blob/dc253886b5b2e9bc8d9e36db787abb083a667fd8/debian/php-cgi.conf#L5-6https://github.com/laravel/framework/blob/2049de73aa099a113a287587df4cc522c90961f5/src/Illuminate/Validation/Concerns/ValidatesAttributes.php#L1331-L1333https://salsa.debian.org/php-team/php/-/commit/dc253886b5b2e9bc8d9e36db787abb083a667fd8https://nvd.nist.govhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1002728https://github.com/Sybelle03/CVE-2021-43617
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322cross-site request forgeryunauthorizedCVE-2024-33925reflected XSSCVE-2023-51580CVE-2023-51579CVE-2015-2051CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook