Количество 3
Количество 3
CVE-2025-49130
Laravel Translation Manager is a package to manage Laravel translation files. Prior to version 0.6.8, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to incorrect input validation and sanitization of user-input data. An attacker can inject arbitrary HTML code, including JavaScript scripts, into the page processed by the user's browser, allowing them to steal sensitive data, hijack user sessions, or conduct other malicious activities. Only authenticated users with access to the translation manager are impacted. The issue is fixed in version 0.6.8.
GHSA-j226-63j7-qrqh
Laravel Translation Manager Vulnerable to Stored Cross-site Scripting
BDU:2025-08461
Уязвимость пакета Laravel Translation Manager PHP-фреймворка Laravel, позволяющая нарушителю проводить межсайтовые сценарные атаки
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-49130 Laravel Translation Manager is a package to manage Laravel translation files. Prior to version 0.6.8, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to incorrect input validation and sanitization of user-input data. An attacker can inject arbitrary HTML code, including JavaScript scripts, into the page processed by the user's browser, allowing them to steal sensitive data, hijack user sessions, or conduct other malicious activities. Only authenticated users with access to the translation manager are impacted. The issue is fixed in version 0.6.8. | 0% Низкий | 8 месяцев назад | |
| GHSA-j226-63j7-qrqh Laravel Translation Manager Vulnerable to Stored Cross-site Scripting | 0% Низкий | 8 месяцев назад | |
 | BDU:2025-08461 Уязвимость пакета Laravel Translation Manager PHP-фреймворка Laravel, позволяющая нарушителю проводить межсайтовые сценарные атаки | CVSS3: 3.5 | 0% Низкий | 9 месяцев назад |
Уязвимостей на страницу