There is a file uploads application developped in Laravel 5.8 The application uses Laravel out of the box authentication system.
There is Uploads Form page and Uploads List page with download links.
Files are uploaded on Uploads Form page, encrypted and saved in DB.
Files may be downloaded from Uploads List page.
File names and file types are restricted to rules to keep the app secure.
The file to upload must be a file of type: pdf, doc, docx, jpeg, jpg, png, gif.
Also, File Name may contain latin alphanumeric chars and dots only without spaces!
For example, "apple3.png" is legal filename.
Yet "Insert into", "1 OR Delete * " are illegal filenames.

Steps to reproduce.
git clone https://github.com/avrahamm/FileUploads.git

cd FilesUploads

composer install

cp .env.example .env

php artisan key:generate

php artisan migrate

Create DB and priveleged user,
Open .env file and set your DB credentials,
for example:
DB_CONNECTION=mysql
DB_HOST=127.0.0.1
DB_PORT=3306
DB_DATABASE=ewave
DB_USERNAME=avraham
DB_PASSWORD=123456

Optionally, you can replace APP_NAME=Uploads

I worked on Windows with XAMP, and configured virtual host - you can make your choise.