CVE-2021-43808
Description
Laravel is a web application framework. Laravel prior to versions 8.75.0, 7.30.6, and 6.20.42 contain a possible cross-site scripting (XSS) vulnerability in the Blade templating engine. A broken HTML element may be clicked and the user taken to another location in their browser due to XSS. This is due to the user being able to guess the parent placeholder SHA-1 hash by trying common names of sections. If the parent template contains an exploitable HTML structure an XSS vulnerability can be exposed. This vulnerability has been patched in versions 8.75.0, 7.30.6, and 6.20.42 by determining the parent placeholder at runtime and using a random hash that is unique to each request.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ if you've already worked around this in production โ publish your fix to the community-verified tier.
โ Propose a mitigation on Community โ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
OS impact
Debian Fixed 5 releases
| Version | Status | Fixed in |
|---|---|---|
| trixie | Fixed | 6.20.14+dfsg-3 |
| sid | Fixed | 6.20.14+dfsg-3 |
| forky | Fixed | 6.20.14+dfsg-3 |
| bullseye | Fixed | 6.20.14+dfsg-2+deb11u1 |
| bookworm | Fixed | 6.20.14+dfsg-3 |
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| Packagist | laravel/framework | <6.20.42 | 6.20.42 |
| Packagist | laravel/framework | >=7.0.0,<7.30.6 | 7.30.6 |
| Packagist | laravel/framework | >=8.0.0,<8.75.0 | 8.75.0 |
| Packagist | illuminate/view | <6.20.42 | 6.20.42 |
| Packagist | illuminate/view | >=7.0.0,<7.30.6 | 7.30.6 |
| Packagist | illuminate/view | >=8.0.0,<8.75.0 | 8.75.0 |
References
- https://github.com/laravel/framework/security/advisories/GHSA-66hf-2p6w-jqfw
- https://nvd.nist.gov/vuln/detail/CVE-2021-43808
- https://github.com/laravel/framework/pull/39906
- https://github.com/laravel/framework/pull/39908
- https://github.com/laravel/framework/pull/39909
- https://github.com/laravel/framework/commit/b8174169b1807f36de1837751599e2828ceddb9b
- https://github.com/FriendsOfPHP/security-advisories/blob/master/illuminate/view/CVE-2021-43808.yaml
- https://github.com/FriendsOfPHP/security-advisories/blob/master/laravel/framework/CVE-2021-43808.yaml
- https://github.com/laravel/framework
- https://github.com/laravel/framework/releases/tag/v6.20.42
- https://github.com/laravel/framework/releases/tag/v7.30.6
- https://github.com/laravel/framework/releases/tag/v8.75.0
- https://security-tracker.debian.org/tracker/CVE-2021-43808
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.