描述
A deserialization vulnerability in the destruct() function of Laravel v8.5.9 allows attackers to execute arbitrary commands.
AI分析AI驱动
受影响产品
laravellaravel
8.5.9
参考资料
- https://s1mple-top.github.io/2021/03/09/Laravel8-new-pop-chain-mining-process/ExploitThird Party Advisory
- https://s1mple-top.github.io/2021/03/09/Laravel8-new-pop-chain-mining-process/ExploitThird Party Advisory