Known Exploited Vulnerability: CVE-2021-3129

Laravel Ignition File Upload Vulnerability

Catalog version: 2026.07.16 Date added: 2023-09-18 Due date: 2023-10-09 CISA catalog

Vendor: Laravel

Product: Ignition

Required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Known ransomware campaign use: Known

Notes: https://github.com/facade/ignition/releases/tag/2.5.2 https://nvd.nist.gov/vuln/detail/CVE-2021-3129

cvelogic Threat Intelligence