Serialization RCE Laravel/framework

 

 

Serialization RCE Laravel/framework - CVE-2018-15133

Overview

Laravel/framework is vulnerable to RCE. the vulnerability exists due to unserialized call on X-XSRF-TOKEN

Remediation

update to "laravel/framework": "v5.6.30"

Reference

https://laravel.com/docs/5.6/upgrade#upgrade-5.6.30

Ready to be protected?

14 days trial , No credit card upfront , Risk free