Livewire-Filemanager: >> Filemanager >> 0.1.17 Security Vulnerabilities
Livewire Filemanager, commonly used in Laravel applications, contains LivewireFilemanagerComponent.php, which does not perform file type and MIME validation, allowing for RCE through upload of a malicious php file that can then be executed via the /storage/ URL if a commonly performed setup process within Laravel applications has been completed.
CVSS Score
9.8
EPSS Score
0.0
Published
2026-01-16