Fluid Attacks Database

Description

Unauthenticated remote code execution in Ignition Ignition before 2.5.2, as used in Laravel and other products, allows unauthenticated remote attackers to execute arbitrary code because of insecure usage of file_get_contents() and file_put_contents(). This is exploitable on sites using debug mode with Laravel before 8.4.2.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
packagist	facade/ignition	>=2.5.0 <2.5.2 \|\| >=2.0.0 <2.4.2 \|\| >=1.7.0 <1.16.14 \|\| >=0 <1.6.15	2.5.2, 2.4.2, 1.16.14, 1.6.15

Aliases

1. CVE-2021-31292. NVD-2021-31293. OSV-2021-31294. GCVE-2021-3129

References

1. https://github.com/facade/ignition/pull/3342. https://github.com/facade/ignition/commit/11ffca14abd22db779d90b12e193f8000f6d184b3. https://github.com/FriendsOfPHP/security-advisories/blob/master/facade/ignition/CVE-2021-3129.yaml4. https://www.ambionics.io/blog/laravel-debug-rce5. https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-31296. http://packetstormsecurity.com/files/162094/Ignition-2.5.1-Remote-Code-Execution.html7. http://packetstormsecurity.com/files/165999/Ignition-Remote-Code-Execution.html8. https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-3129.yaml9. https://github.com/ambionics/laravel-exploits10. https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/php/ignition_laravel_debug_rce.rb

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.