2 matches found
CVE-2023-36825
Orchid is a Laravel package that allows application development of back-office applications, admin/user panels, and dashboards. A vulnerability present starting in version 14.0.0-alpha4 and prior to version 14.5.0 is related to the deserialization of untrusted data from the state query parameter,...
CVE-2023-36825
Summary: CVE-2023-36825 affects the Orchid Laravel package prior to version 14.5.0. Root cause: deserialization of untrusted data from the _state query parameter. Impact: potential remote code execution. Status and remediation: patched in version 14.5.0; users should upgrade to 14.5.0 or any late...