Vulners
Lucene search
CVE-2024-55661
๐๏ธย 13 Dec 2024ย 16:04:51Reported byย GitHub_MTypeย 
ย cve๐ย web.nvd.nist.gov๐ฐ๏ธย 4ย Media mentions๐ย 91ย Views๐ WEB
| Reporter | Title | Published | Views | Family All 17 |
|---|---|---|---|---|
 | The vulnerability of the remember() function in the Laravel Pulse performance monitoring and application usage analysis tool allows a hacker to execute arbitrary code. | 21 Jan 202500:00 | โ | bdu_fstec |
 | CVE-2024-55661 | 13 Dec 202418:17 | โ | circl |
 | Laravel Pulse ๅฎๅ จๆผๆด | 13 Dec 202400:00 | โ | cnnvd |
 | CVE-2024-55661 Laravel Pulse Allows Remote Code Execution via Unprotected Query Method | 13 Dec 202416:04 | โ | cvelist |
 | Laravel Pulse 1.3.1 - Arbitrary Code Injection | 9 Jun 202500:00 | โ | exploitdb |
 | EUVD-2024-3450 | 3 Oct 202520:07 | โ | euvd |
 | Laravel Pulse Allows Remote Code Execution via Unprotected Query Method | 13 Dec 202420:35 | โ | github |
 | CVE-2024-55661 | 13 Dec 202416:15 | โ | nvd |
 | CVE-2024-55661 Laravel Pulse Allows Remote Code Execution via Unprotected Query Method | 13 Dec 202416:04 | โ | osv |
| GHSA-8VWH-PR89-4MW2 Laravel Pulse Allows Remote Code Execution via Unprotected Query Method | 13 Dec 202420:35 | โ | osv |
10
[
{
"vendor": "laravel",
"product": "pulse",
"versions": [
{
"version": "< 1.3.1",
"status": "affected"
}
]
}
]| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| type | request body | livewire/message/{component} | Arbitrary code execution via remember() in Laravel Pulse <1.3.1 using Livewire component payload | CWE-94 |
| method | request body | livewire/message/{component} | Arbitrary code execution via remember() in Laravel Pulse <1.3.1 using Livewire component payload | CWE-94 |
| params | request body | livewire/message/{component} | Arbitrary code execution via remember() in Laravel Pulse <1.3.1 using Livewire component payload | CWE-94 |
| id | request body | livewire/message/{component} | Arbitrary code execution via remember() in Laravel Pulse <1.3.1 using Livewire component payload | CWE-94 |
| name | request body | livewire/message/{component} | Arbitrary code execution via remember() in Laravel Pulse <1.3.1 using Livewire component payload | CWE-94 |
Data
Build on a solid foundation withย Vulners data
Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data
Api
Power your application withย Vulners API
The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access
App
Assess and manage vulnerabilities withย Vulnersย tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
17 Jun 2026 08:11Current
7.7High risk
Vulners AI Score7.7
CVSS 48.7
CVSS 3.18.8
EPSS0.28571
SSVC