Image upload bypass

CVE-2021-43617

Affected version: >=8.0.0,<8.71.0

Reported by:
FriendsOfPHP/security-advisories

Possible cross-site scripting (XSS) vulnerability in the Blade templating engine

CVE-2021-43808

Affected version: <6.20.42|>=7.0.0,<7.30.6|>=8.0.0,<8.75.0

Reported by:
GitHub, FriendsOfPHP/security-advisories