CVE-2021-3129

Laravel Ignition contains a file upload vulnerability that allows unauthenticated remote attackers to execute malicious code due to insecure usage of file_get_contents() and file_put_contents(). Vendor/Product: Laravel Ignition. Added to CISA KEV 2023-09-18; required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.