Laravel Framework 6.20.42

CPE Details

Laravel Framework 6.20.42
6.20.42
2021-12-08
13h57 +00:00
2021-12-08
16h10 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:laravel:framework:6.20.42:*:*:*:*:*:*:*

Informations

Vendor

laravel

Product

framework

Version

6.20.42

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2021-43617 2021-11-14 14h32 +00:00 Laravel Framework through 8.70.2 does not sufficiently block the upload of executable PHP content because Illuminate/Validation/Concerns/ValidatesAttributes.php lacks a check for .phar files, which are handled as application/x-httpd-php on systems based on Debian. NOTE: this CVE Record is for Laravel Framework, and is unrelated to any reports concerning incorrectly written user applications for image upload.
9.8
Critique