cvedb.io
CVE-2018-8947
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2018-03-25T16:29:00.297 · Last modified 2026-06-17T02:05:42.473

Summary

rap2hpoutre Laravel Log Viewer before v0.13.0 relies on Base64 encoding for l, dl, and del requests, which makes it easier for remote attackers to bypass intended access restrictions, as demonstrated by reading arbitrary files via a dl request.

Affected products

laravel_log_viewer_project — laravel_log_viewer

Does this affect you?

Add your gear to cvedb and we'll alert you only when laravel_log_viewer_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.