Home
Mapping Frameworks
Known Exploited Vulnerabilities Home
Laravel Ignition File Upload Vulnerability

Known Exploited Vulnerabilities CVE-2021-3129 Mappings

Ignition before 2.5.2, as used in Laravel and other products, allows unauthenticated remote attackers to execute arbitrary code because of insecure usage of file_get_contents() and file_put_contents(). This is exploitable on sites using debug mode with Laravel before 8.4.2.

Mappings

Capability ID	Capability Description	Mapping Type	ATT&CK ID	ATT&CK Name	Notes
CVE-2021-3129	Laravel Ignition File Upload Vulnerability	exploitation_technique	T1190	Exploit Public-Facing Application	Comments This vulnerability is exploited when a remote unauthorized user sends a malicious payload to a server using an insecure version of Ignition. The payload targets the MakeViewVariableOptionalSolution.php module, leveraging insecure PHP functions file_get_contents and file_put_contents to specify a file path for executing arbitrary code. References https://blog.sonicwall.com/en-us/2021/04/laravel-ignition-remote-code-execution-vulnerability/ https://isc.sans.edu/diary/Laravel+v842+exploit+attempts+for+CVE20213129+debug+mode+Remote+code+execution/27758 https://pentest-tools.com/blog/exploit-rce-vulnerability-laravel-cve-2021-3129
CVE-2021-3129	Laravel Ignition File Upload Vulnerability	primary_impact	T1059	Command and Scripting Interpreter	Comments This vulnerability is exploited when a remote unauthorized user sends a malicious payload to a server using an insecure version of Ignition. The payload targets the MakeViewVariableOptionalSolution.php module, leveraging insecure PHP functions file_get_contents and file_put_contents to specify a file path for executing arbitrary code. References https://blog.sonicwall.com/en-us/2021/04/laravel-ignition-remote-code-execution-vulnerability/ https://isc.sans.edu/diary/Laravel+v842+exploit+attempts+for+CVE20213129+debug+mode+Remote+code+execution/27758 https://pentest-tools.com/blog/exploit-rce-vulnerability-laravel-cve-2021-3129