Bitnami/laravel — 8 CVEs

CRITICAL9.8CVE-2025-27515Laravel has a File Validation Bypass

from 0, < 12.2.0

CRITICAL9.8CVE-2021-28254A deserialization vulnerability in the destruct() function of Laravel v8.5.9 allows attackers to execute arbitrary commands.

>= 8.5.9, < 8.5.10

CRITICAL9.8CVE-2022-2870laravel deserialization

>= 5.1.0, < 5.1.47

HIGH8.8Laravel deserialization

>= 5.1.0, < 5.1.47

HIGH7.5Guard bypass in Eloquent models affecting Laravel illuminate database component

from 0, < 6.18.34, >= 7.0.0, < 7.23.2

HIGH7.5Improper Input Validation in Laravel

from 0, < 6.18.35, >= 7.0.0, < 7.24.0

HIGH7.2Query Binding Exploitation in Laravel

>= 6.0.0, < 6.20.11, >= 7.0.0, < 7.30.2, >= 8.0.0, < 8.22.1

NONE0.0php-laravel-framework - security update

from 0, < 6.20.45, >= 7.0.0, < 7.30.7, >= 8.0.0, < 8.83.28, >= 9.0.0, < 9.52.17, >= 10.0.0, < 10.48.23, >= 11.0.0, < 11.31.0

pkg:Bitnami/laravel