CVE-2021-23814

Published: Dic 17, 2021 Last Modified: Giu 17, 2025 EU-VD ID: EUVD-2022-0578 Aliases: GHSA-f8x6-m9f5-ffp8
ExploitDB:
Other exploit source:
Google Dorks:
MEDIUM 6,7
Source: [email protected]
Attack Vector: network
Attack Complexity: high
Privileges Required: low
User Interaction: required
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: low
MEDIUM 6,5
Source: [email protected]
Access Vector: network
Access Complexity: low
Authentication: single
Confidentiality: partial
Integrity: partial
Availability: partial

Description

AI Translation Available

This affects versions of the package unisharp/laravel-filemanager before 2.6.2. The upload() function does not sufficiently validate the file type when uploading.

An attacker may be able to reproduce the following steps:

1. Install a package with a web Laravel application.
2. Navigate to the Upload window
3. Upload an image file, then capture the request
4. Edit the request contents with a malicious file (webshell)
5. Enter the path of file uploaded on URL - Remote Code Execution

**Note:** Prevention for bad extensions can be done by using a whitelist in the config file(lfm.php). Corresponding document can be found in [here](https://unisharp.github.io/laravel-filemanager/configfolder-categories).

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0209
Percentile
0,8th
Updated

EPSS Score Trend (Last 90 Days)

94

Improper Control of Generation of Code ('Code Injection')

Draft
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Access Control Integrity Confidentiality Availability Non-Repudiation
Potential Impacts:
Bypass Protection Mechanism Gain Privileges Or Assume Identity Execute Unauthorized Code Or Commands Hide Activities
Applicable Platforms
Languages: Interpreted
Technologies: AI/ML
Likelihood of Exploit: Medium
View CWE Details
434

Unrestricted Upload of File with Dangerous Type

Draft
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Integrity Confidentiality Availability
Potential Impacts:
Execute Unauthorized Code Or Commands
Applicable Platforms
Languages: ASP.NET, Not Language-Specific, PHP
Technologies: Web Server
Likelihood of Exploit: Medium
View CWE Details
Application

Laravel-Filemanager by Unisharp

Product Information
Vendor Unisharp
Product Laravel-Filemanager
Version Range Affected
From 0.0.0 (inclusive)
cpe:2.3:a:unisharp:laravel-filemanager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://github.com/UniSharp/laravel-filemanager/blob/master…
Broken Link Third Party Advisory
https://github.com/UniSharp/laravel-filemanager/blob/master/src/Controllers/Upl…
https://github.com/UniSharp/laravel-filemanager/issues/1113…
https://github.com/UniSharp/laravel-filemanager/issues/1113#issuecomment-181209…
https://snyk.io/vuln/SNYK-PHP-UNISHARPLARAVELFILEMANAGER-15…
Third Party Advisory
https://snyk.io/vuln/SNYK-PHP-UNISHARPLARAVELFILEMANAGER-1567199
https://github.com/UniSharp/laravel-filemanager/blob/master…
Broken Link Third Party Advisory
https://github.com/UniSharp/laravel-filemanager/blob/master/src/Controllers/Upl…
https://github.com/UniSharp/laravel-filemanager/issues/1113
https://github.com/UniSharp/laravel-filemanager/issues/1113
https://github.com/UniSharp/laravel-filemanager/releases/ta…
https://github.com/UniSharp/laravel-filemanager/releases/tag/v2.5.1
https://github.com/UniSharp/laravel-filemanager/releases/ta…
https://github.com/UniSharp/laravel-filemanager/releases/tag/v2.6.2
https://security.snyk.io/vuln/SNYK-PHP-UNISHARPLARAVELFILEM…
https://security.snyk.io/vuln/SNYK-PHP-UNISHARPLARAVELFILEMANAGER-1567199