Security Advisories - laravel/framework - Packagist

laravel/framework Security Advisories for v6.20.1 (5)

[CRITICAL] Laravel Framework Deserialization Vulnerability

PKSA-dpt9-7cmv-dk65 CVE-2019-9081 GHSA-pfg4-p438-p874

Affected version: >=5.7.0,<6.20.44

Reported by:
GitHub
SQL Server LIMIT / OFFSET SQL Injection

PKSA-ckwp-rt7t-c46m

Affected version: >=6.0.0,<6.20.26|>=7.0.0,<7.30.5|>=8.0.0,<8.40.0

Reported by:
FriendsOfPHP/security-advisories
Unexpected bindings in QueryBuilder

PKSA-4npr-btr6-zhny

Affected version: >=6.0.0,<6.20.14|>=7.0.0,<7.30.4|>=8.0.0,<8.24.0

Reported by:
FriendsOfPHP/security-advisories
[MEDIUM] Possible cross-site scripting (XSS) vulnerability in the Blade templating engine

PKSA-njrm-6dtg-m2pc CVE-2021-43808 GHSA-66hf-2p6w-jqfw

Affected version: <6.20.42|>=7.0.0,<7.30.6|>=8.0.0,<8.75.0

Reported by:
GitHub, FriendsOfPHP/security-advisories
[HIGH] Unexpected bindings in QueryBuilder

PKSA-985r-hryy-555b CVE-2021-21263 GHSA-3p32-j457-pg5x

Affected version: >=6.0.0,<6.20.11|>=7.0.0,<7.30.2|>=8.0.0,<8.22.1

Reported by:
GitHub, FriendsOfPHP/security-advisories