Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2024-52301

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Laravel is a web application framework. When the registerargcargv php directive is set to on , and users call any URL with a special crafted query string, they...

8.7CVSS5.5AI score0.37981EPSS
Exploits1References2
Debian
Debian
added 2024/12/21 2:59 p.m.73 views

[SECURITY] [DLA 3997-1] php-laravel-framework security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3997-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb December 21, 2024 https://wiki.debian.org/LTS -...

8.7CVSS6.4AI score0.37981EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/12/21 12:0 a.m.17 views

Debian dla-3997 : php-illuminate-auth - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-3997 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3997-1 [email protected] https://www.debian.org/lts/security/...

8.7CVSS5.5AI score0.37981EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/11/12 7:32 p.m.59 views

CVE-2024-52301 Laravel allows environment manipulation via query string

Laravel is a web application framework. When the registerargcargv php directive is set to on , and users call any URL with a special crafted query string, they are able to change the environment used by the framework when handling the request. The vulnerability fixed in 6.20.45, 7.30.7, 8.83.28,...

8.7CVSS7.1AI score0.37981EPSS
Exploits1References1
Friends Of PHP
Friends Of PHP
added 2024/11/12 3:29 p.m.32 views

Laravel environment manipulation via query string

Description When the registerargcargv php directive is set to on , and users call any URL with a special crafted query string, they are able to change the environment used by the framework when handling the request. Resolution The framework now ignores argv values for environment detection on...

8.7CVSS5.9AI score0.37981EPSS
Exploits1Affected Software1
Rows per page
Query Builder