Lucene search
K

4 matches found

NVD
NVD
added 2026/06/22 10:16 p.m.6 views

CVE-2026-48067

Filament is a collection of full-stack components for accelerated Laravel development. From filament/actions 4.0.0 until 4.11.4 and 5.6.4 and from filament/tables 3.0.0 until 3.3.51, the recordSelectOptionsQuery method may be used to scope the options available in the Select field for AttachActio...

6.5CVSS0.00178EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/22 9:46 p.m.23 views

CVE-2026-48067 Filament: Inconsistent scope enforcement for AttachAction and AssociateAction Select fields

Filament is a collection of full-stack components for accelerated Laravel development. From filament/actions 4.0.0 until 4.11.4 and 5.6.4 and from filament/tables 3.0.0 until 3.3.51, the recordSelectOptionsQuery method may be used to scope the options available in the Select field for AttachActio...

6.5CVSS0.00178EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/22 9:46 p.m.6 views

CVE-2026-48067

Filament is a collection of full-stack components for accelerated Laravel development. From filament/actions 4.0.0 until 4.11.4 and 5.6.4 and from filament/tables 3.0.0 until 3.3.51, the recordSelectOptionsQuery method may be used to scope the options available in the Select field for AttachActio...

6.5CVSS5.8AI score0.00178EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/22 9:46 p.m.23 views

CVE-2026-48067

CVE-2026-48067 affects Filament components where the recordSelectOptionsQuery() used to scope options in AttachAction and AssociateAction Select fields did not apply the same scope in validation. From filament/actions 4.0.0–4.11.4 and 5.6.4, and filament/tables 3.0.0–3.3.51, an attacker could tri...

6.5CVSS5.8AI score0.00178EPSS
Exploits0References1
Rows per page
Query Builder