Miggo Logo
Miggo Vulnerability Database
CVE-2022-40734

CVE-2022-40734: UniSharp Laravel Filemanager directory traversal vulnerability

6.5

CVSS Score
3.1

Basic Information

CVE ID
CVE-2022-40734
GHSA ID
GHSA-5m2h-7rf2-rpx6
EPSS Score
0.99762%
CWE
CWE-22
Published
9/15/2022
Updated
12/7/2023
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
unisharp/laravel-filemanagercomposer< 2.6.42.6.4

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from using league/flysystem <2.0.0 which lacked proper path traversal detection. The primary fix was requiring flysystem^2.0 which added path normalization safeguards. While the Filemanager's download functionality handling the 'working_dir' parameter is the entry point, the actual vulnerable path resolution logic resides in flysystem's internal path handling (not directly in Filemanager's code). No specific functions in the Filemanager package itself are explicitly shown to contain vulnerable code - the weakness was in the dependency's path resolution capabilities rather than specific unsafe function implementations in the Filemanager.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

UniS**rp l*r*v*l-*il*m*n***r (*k* L*r*v*l *il*m*n***r) wit* `l***u*/*lysyst*m` v*rsion `< *.*.*` *llows *ownlo**?workin*_*ir=%**.. *ir**tory tr*v*rs*l to r*** *r*itr*ry *il*s, *s *xploit** in t** wil* in Jun* ****. Sin** `v*.*.*`, UniS**rp l*r*v*l-*

Reasoning

T** vuln*r**ility st*ms *rom usin* `l***u*/*lysyst*m` <*.*.* w*i** l**k** prop*r p*t* tr*v*rs*l **t**tion. T** prim*ry *ix w*s r*quirin* `*lysyst*m^*.*` w*i** ***** p*t* norm*liz*tion s****u*r*s. W*il* t** `*il*m*n***r`'s *ownlo** *un*tion*lity **n*l