CVE-2022-2870— laravel deserialization

laravel deserialization

A vulnerability was found in laravel 5.1 and classified as problematic. This issue affects some unknown processing. The manipulation leads to deserialization. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-206501 was assigned to this vulnerability.

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L

可信数据的反序列化

Laravel 代码问题漏洞

Laravel是Laravel 团队（Laravel）的一个Web 应用程序框架。 Laravel 5.1版本存在代码问题漏洞，该漏洞源于会影响一些未知的处理，操作导致反序列化，攻击可以远程发起，该漏洞利用已向公众披露并可能被使用。

N/A

N/A