Framework Security Vulnerabilities and Issues — Framework CVE List

Lucene search

LaravelFramework

3 matches found

CVE•added 2025/03/05 7:15 p.m.•92 views

CVE-2025-27515

Laravel is a web application framework. When using wildcard validation to validate a given file or image field (files.*), a user-crafted malicious request could potentially bypass the validation rules. This vulnerability is fixed in 11.44.1 and 12.1.1.

6.9CVSS7AI score0.00023EPSS

CVE•added 2025/03/10 10:15 a.m.•65 views

CVE-2024-13919

The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an improper encoding of route parameters in the debug-mode error page.

8CVSS6.4AI score0.00018EPSS

CVE•added 2025/03/10 10:15 a.m.•60 views

CVE-2024-13918

The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an improper encoding of request parameters in the debug-mode error page.

8CVSS6.4AI score0.00031EPSS