Support the ongoing development of Laravel.io →
eddieridwan
posted 1 year ago
Laravel Security

Hackers have been able to upload malicious files via our Laravel application. After analysis we identified that there is a vulnerabilty in the Laravel filemanager. Patches found did not resolve the problem.

Here is a video describing the exploit. https://www.youtube.com/watch?v=hGMuUjOmnU8

Does anybody know of a fix for this security issue?

Thanks.

0
driesvints
replied 1 year ago
moderator

I'm thinking you already saw https://unisharp.github.io/laravel-filemanager/security

They don't have a specific way to report security vulnerabilities so if this is still an issue try opening an issue on their repo to ask to which email address you can report the vulnerability. It's always better to discuss these things in private with the maintainers instead of disclosing these publicly: https://github.com/UniSharp/laravel-filemanager

0

Sign in to participate in this thread!

Eventy

Your banner here too?

Eddie Ridwan eddieridwan Joined 17 Nov 2023

Moderators

We'd like to thank these amazing companies for supporting us

Eventy NativePHP
Fathom
Forge
Envoyer
Beyond Code
BairesDev
N-iX
Litslink

Your logo here?

Laravel.io

The Laravel portal for problem solving, knowledge sharing and community building.

Laravel.io

Forum Articles Pastebin

Socials

X (Twitter) Bluesky Bluesky GitHub

The community

Laravel Laravel Laravel News Laravel News
Laracasts Laracasts Laravel Podcast Laravel Podcast
© 2025 Laravel.io - All rights reserved.
Terms of service Privacy policy Advertise