CVE

CVE-2018-18888

admin

CVE-2018-18888

An issue was discovered in laravelCMS through 2018-04-02. appHttpControllersBackendProfileController.php allows upload of arbitrary PHP files because the file extension is not properly checked and uploaded files are not properly renamed.

Source: CVE-2018-18888

Exit mobile version