CVE-2025-65345 PoC — Laravel File Manager 安全漏洞

Source

https://github.com/tlekrean/CVE-2025-65345

Associated Vulnerability

Title:Laravel File Manager 安全漏洞 (CVE-2025-65345)
Description:Laravel File Manager是Aleksandr Manekin个人开发者的一个Laravel文件管理器。 Laravel File Manager 3.3.1及之前版本存在安全漏洞，该漏洞源于zip归档功能中存在目录遍历，可能导致任意文件操作。

Description

An authenticated Directory Traversal vulnerability in laravel-file-manager v3.3.1 and below allows attackers with access to the file manager interface to use zip/archiving function to create archives containing files and directories outside the intended scope due to improper path validation.

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!