CVE-2020-19316: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

December 20, 2021 (updated December 22, 2021)

OS Command injection vulnerability in function link in Filesystem.php in Laravel Framework

References

www.netbytesec.com/advisories/OSCommandInjectionInLaravelFramework/
github.com/laravel/framework/commit/44c3feb604944599ad1c782a9942981c3991fa31
nvd.nist.gov/vuln/detail/CVE-2020-19316

Detect and mitigate CVE-2020-19316 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →