CVE-2021-45040

CVE-2021-45040

EPSS 3.1%

The Spatie media-library-pro library through 1.17.10 and 2.x through 2.1.6 for Laravel allows remote attackers to upload executable files via the uploads route.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://cybersecthreat.com/2022/03/14/cve-2021-45040/https://spatie.be/docs/laravel-medialibrary/v9/handling-uploads-with-media-library-pro/processing-uploads-on-the-server