AI Score
Confidence
High
EPSS
Percentile
52.1%
Laravel before 5.5.10 mishandles the remember_me token verification process because DatabaseUserProvider does not have constant-time token comparison.
github.com/laravel/framework/pull/21320
github.com/laravel/framework/releases/tag/v5.5.10
laravel-news.com/laravel-v5-5-11