Lucene search
K

9 matches found

Nuclei
Nuclei
added 6 days ago39 views

Laravel Livewire v3 - Remote Command Execution

Livewire v3 Laravel contains a vulnerability in its component hydration/update mechanism that can be exploited to reach remote command execution RCE without authentication under certain conditions. id: CVE-2025-54068 info: name: Laravel Livewire v3 - Remote Command Execution author: flame-11...

9.8CVSS7.7AI score0.95376EPSS
Exploits5References5
GithubExploit
GithubExploit
added 2026/05/11 3:11 p.m.174 views

Exploit for Code Injection in Laravel Livewire

No d...

9.8CVSS5.8AI score0.95376EPSS
Exploits5
CISA
CISA
added 2026/03/20 12:0 p.m.9 views

CISA Adds Five Known Exploited Vulnerabilities to Catalog

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-31277link is external Apple Multiple Products Buffer Overflow Vulnerability CVE-2025-32432link is external Craft CMS Code Injection Vulnerability...

10CVSS5.7AI score0.99803EPSS
In wildExploits21References10
CISA KEV Catalog
CISA KEV Catalog
added 2026/03/20 12:0 a.m.15 views

Laravel Livewire Code Injection Vulnerability

Laravel Livewire contain a code injection vulnerability that could allow unauthenticated attackers to achieve remote command execution in specific scenarios...

9.8CVSS6.1AI score0.95376EPSS
In wildExploits5
GithubExploit
GithubExploit
added 2026/01/20 2:10 p.m.278 views

Exploit for Code Injection in Laravel Livewire

CVE-2025-54068 A tool designed to exploit CVE-2025-54068 and...

9.8CVSS6.2AI score0.95376EPSS
Exploits5
ATTACKERKB
ATTACKERKB
added 2026/01/16 12:43 p.m.7 views

CVE-2025-14894

Livewire Filemanager, commonly used in Laravel applications, contains LivewireFilemanagerComponent.php, which does not perform file type and MIME validation, allowing for RCE through upload of a malicious php file that can then be executed via the /storage/ URL if a commonly performed setup proce...

9.8CVSS5.5AI score0.00571EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/01/01 12:28 p.m.460 views

Exploit for Code Injection in Laravel Livewire

Livewire2025CVE Livewire CVE-2025-54068 Scanner Automated v...

9.8CVSS8.1AI score0.95376EPSS
Exploits5
GithubExploit
GithubExploit
added 2025/12/23 9:54 a.m.153 views

Exploit for Code Injection in Laravel Livewire

Livepyre A tool designed to exploit CVE-2025-54068 an...

9.8CVSS5.8AI score0.95376EPSS
Exploits5
Snyk
Snyk
added 2024/03/14 1:3 p.m.6 views

Cross-site Scripting (XSS)

Overview livewire/livewire is an A front-end framework for Laravel. Affected versions of this package are vulnerable to Cross-site Scripting XSS when a page uses Url for a property. An attacker can inject HTML code in the context of the user's browser session by crafting a malicious link and...

6.1CVSS7AI score0.00516EPSS
Exploits1References2
Rows per page
Query Builder