laravel/framework Security Advisories for v7.8.0 (4)

  • Unexpected bindings in QueryBuilder

    Affected version: >=6.0.0,<6.20.14|>=7.0.0,<7.30.4|>=8.0.0,<8.24.0

    Reported by:
    FriendsOfPHP/security-advisories

  • Guard bypass in Eloquent models

    Affected version: >=5.5.0,<=5.5.49|>=6.0.0,<6.18.34|>=7.0.0,<7.23.2

    Reported by:
    FriendsOfPHP/security-advisories

  • RCE vulnerability in "cookie" session driver

    Affected version: >=4.1.0,<=4.1.99999|>=4.2.0,<=4.2.99999|>=5.0.0,<=5.0.99999|>=5.1.0,<=5.1.99999|>=5.2.0,<=5.2.99999|>=5.3.0,<=5.3.99999|>=5.4.0,<=5.4.99999|>=5.5.0,<=5.5.49|>=5.6.0,<=5.6.99999|>=5.7.0,<=5.7.99999|>=5.8.0,<=5.8.99999|>=6.0.0,<6.18.31|>=7.0.0,<7.22.4

    Reported by:
    FriendsOfPHP/security-advisories

  • Unexpected bindings in QueryBuilder

    CVE-2021-21263

    Affected version: >=6.0.0,<6.20.11|>=7.0.0,<7.30.2|>=8.0.0,<8.22.1

    Reported by:
    FriendsOfPHP/security-advisories