Latest Vulnerabilities and Exploits



CVE ID:

CVE-2022-40734

Details:

UniSharp laravel-filemanager (aka Laravel Filemanager) through 2.5.1 allows download?working_dir=%2F.. directory traversal to read arbitrary files, as exploited in the wild in June 2022.

References:

:https://github.com/UniSharp/laravel-filemanager/issues/1150

ZeroDayLab Assigned Tags:

FILE READ ACCESS
DIRECTORY TRAVERSAL