Approved changes feed: RSS · Atom

cpe:2.3:a:alexusmai:laravel_file_manager:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAlexusmai (ed2259f4-31f4-5b08-b73b-20ee020d9144)
ProductLaravel File Manager (f875fc00-fa1f-569c-8de3-894119fa3d0a)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:composer/alexusmai/laravel-file-manager purl2cpe 2026-06-01 10:12:01.369642
pkg:github/alexusmai/laravel-file-manager purl2cpe 2026-06-01 10:12:01.369644

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-65346 vulnerable 2026-06-08 07:39:20.844201 Details available
alexusmai laravel-file-manager 3.3.1 and below is vulnerable to Directory Traversal. The unzip/extraction functionality improperly allows archive contents to be written to arbitrary locations on the filesystem due to insufficient validation of extraction paths.
Published: 2025-12-04T00:00:00.000Z
Updated: 2025-12-05T19:55:59.180Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-65345 vulnerable 2026-06-08 07:39:20.843841 Details available
alexusmai laravel-file-manager 3.3.1 and below is vulnerable to Directory Traversal. The zip/archiving functionality allows an attacker to create archives containing files and directories outside the intended scope due to improper path validation.
Published: 2025-12-03T00:00:00.000Z
Updated: 2025-12-05T19:12:47.792Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.