Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:46953
HistoryMay 16, 2024 - 7:43 a.m.

Mass Assignment

2024-05-1607:43:43
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
laravel
mass assignment
vulnerability
insufficient column quoting
unauthorized operations
database drivers
update
save
risk

AI Score

7.1

Confidence

Low

JSON

Laravel is vulnerable to Mass Assignment. The vulnerability is due to insufficient column quoting for all database drivers, which could allow attackers to perform unauthorized mass assignment operations. If using guarded and passing a user-controlled array into an β€œupdate” or β€œsave” function, applications may be at risk.

AI Score

7.1

Confidence

Low

JSON