216.73.217.22

CVE-2025-34060

· Published 01/07/2025 15:15 · Modified 01/07/2025 15:15

Labels: CVE-2025-34060 2025-07-01CVE-2025-34060CWE-20[email protected]

Essential information

Published
01/07/2025 15:15
Modified
01/07/2025 15:15
Author
Creator
CVSS
10.0 CRITICAL (v3) 10.0 CRITICAL (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

A PHP objection injection vulnerability exists in the Monero Project’s Laravel-based forum software due to unsafe handling of untrusted input in the /get/image/ endpoint. The application passes a user-supplied link parameter directly to file_get_contents() without validation. MIME type checks using PHP’s finfo can be bypassed via crafted stream filter chains that prepend spoofed headers, allowing access to internal Laravel configuration files. An attacker can extract the APP_KEY from config/app.php, forge encrypted cookies, and trigger unsafe unserialize() calls, leading to reliable remote code execution.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
monero / laravel forum cpe:2.3:a:monero:laravel_forum:*:*:*:*:*:*:*:*
laravel / laravel cpe:2.3:a:laravel:laravel:*:*:*:*:*:*:*:*

References