"Carbon has an arbitrary file include via unvalidated input passed to Carbon::setLocale"
If you also allow users to upload .php files into a directory where they could be executed, your site is vulnerable to a remote code execution.
#PHP #ComposerAudit #CVE #InfoSec
github.com/advisories/G...
6
2
1
0