This page aggregates publicly disclosed CVE and security risk information related to laravel-admin, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2023-24249 | An arbitrary file upload vulnerability in laravel-admin v1.8.19 allows attackers to execute arbitrary code via a crafted PHP file. | [email protected] | 7.2 | 2.38% | 2023-02-27 | 2026-06-17 |
| CVE-2019-17433 | z-song laravel-admin 1.7.3 has XSS via the Slug or Name on the Roles screen, because of mishandling on the "Operation log" screen. | [email protected] | 4.8 | 0.62% | 2019-10-10 | 2026-06-16 |