CVE-2022-30779

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Laravel version 9.1.8

Description The issue allows Remote Code Execution via an unserialize pop chain in the destruct method of GuzzleHttpCookieFileCookieJar.php when processing attacker-controlled data for deserialization.

Recommendations For Laravel version 9.1.8, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2022-30779

Affected Products

Guzzlehttpcookiefilecookiejar.Php

Laravel

CVE-2022-30779

Related Identifiers

Affected Products

References · 4