mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-29 17:50:34 +00:00
646 B
646 B
CVE-2024-34515
Description
image-optimizer before 1.7.3 allows PHAR deserialization, e.g., the phar:// protocol in arguments to file_exists().
POC
Reference
- https://github.com/spatie/image-optimizer/issues/210
- https://github.com/spatie/image-optimizer/issues/210
Github
No PoCs found on GitHub currently.