CVE-2020-24941

Опубликовано: 04 сент. 2020

Источник: debian

Описание

An issue was discovered in Laravel before 6.18.35 and 7.x before 7.24.0. The $guarded property is mishandled in some situations involving requests with JSON column nesting expressions.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
php-laravel-framework	not-affected			package

Примечания

https://blog.laravel.com/security-release-laravel-61835-7240

Связанные уязвимости

CVE-2020-24941

CVSS3: 7.5

nvd

почти 5 лет назад

An issue was discovered in Laravel before 6.18.35 and 7.x before 7.24.0. The $guarded property is mishandled in some situations involving requests with JSON column nesting expressions.

GHSA-w68r-5p45-5rqp

CVSS3: 7.5

github

около 4 лет назад

Improper Input Validation in Laravel