8322 matches found
CVE-2024-13919
The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an improper encoding of route parameters in the debug-mode error page...
CVE-2024-13919
The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an improper encoding of route parameters in the debug-mode error page...
CVE-2024-13919
The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an improper encoding of route parameters in the debug-mode error page...
CVE-2024-13919
The CVE-2024-13919 entry concerns Laravel framework versions 11.9.0 to 11.35.1, which are vulnerable to reflected cross-site scripting due to improper encoding of route parameters on the debug-mode error page. Affected component: Laravel routing/debug-mode error page handling. Root cause (as stat...
CVE-2024-13919 Laravel Reflected XSS via Route Parameter in Debug-Mode Error Page
The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an improper encoding of route parameters in the debug-mode error page...
CVE-2024-13919 Laravel Reflected XSS via Route Parameter in Debug-Mode Error Page
The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an improper encoding of route parameters in the debug-mode error page...
CVE-2024-13918
CVE-2024-13918 (Laravel) affects Laravel framework versions 11.9.0 through 11.35.1, where a reflected cross-site scripting vulnerability arises from improper encoding of request parameters in the debug-mode error page. The root cause is the failure to encoding user input on the debug error page, ...
CVE-2024-13918 Laravel Reflected XSS via Request Parameter in Debug-Mode Error Page
The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an improper encoding of request parameters in the debug-mode error page...
CVE-2024-13918 Laravel Reflected XSS via Request Parameter in Debug-Mode Error Page
The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an improper encoding of request parameters in the debug-mode error page...
CVE-2024-13918
The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an improper encoding of request parameters in the debug-mode error page...
Laravel Framework 跨站脚本漏洞
Laravel Framework is a PHP-based web application development framework by Taylor Otwell, an individual developer. A security vulnerability exists in Laravel Framework versions 11.9.0 through 11.35.1, which stems from improper coding of routing parameters on a debug mode error page that could lead...
PT-2025-10571 · Laravel +1 · Laravel +1
Name of the Vulnerable Software and Affected Versions: Laravel framework versions 11.9.0 through 11.35.1 Description: The Laravel framework is susceptible to reflected cross-site scripting due to an improper encoding of request parameters in the debug-mode error page. This issue allows an attacke...
Laravel Framework 跨站脚本漏洞
Laravel Framework is a PHP-based web application development framework from the individual developer Taylor Otwell. A security vulnerability exists in Laravel Framework versions 11.9.0 through 11.35.1, which stems from improper coding of request parameters on a debug mode error page and could lea...
CVE-2025-26204
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...
CVE-2025-26205
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...
CVE-2025-26205
CVE-2025-26205 entry is rejected/not used; this ID does not represent an active vulnerability.
CVE-2025-26204
...
CVE-2025-26204
CVE-2025-26204 is rejected/not used per the Initial Description.
SUSE CVE-2025-21839
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Load DR6 with guest value only before entering .vcpurun loop Move the conditional loading of hardware DR6 with the guest's DR6 value out of the core .vcpurun loop to fix a bug where KVM can load hardware with a stale...
PT-2025-25820
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to the wifi iwlwifi component. The issue concerned the order of actions taken for debug, which was implemented incorrectly...