A1Natas

Name of the Vulnerable Software and Affected Versions: Laravel CMS versions 1.4.7 and earlier Description: The issue allows a remote attacker to execute arbitrary code via the `shell.php` component. This is made possible by a file upload vulnerability. Recommendations: For Laravel CMS versions 1.4.7 and earlier, consider disabling the file upload feature until a patch is available. Restrict access to the `shell.php` component to minimize the risk of exploitation.