[HIGH] Laravel environment manipulation via query string

PKSA-w7xr-vk7n-rstm CVE-2024-52301 GHSA-gv7v-rgg6-548h

Affected version: <6.20.45|>=7.0.0,<7.30.7|>=8.0.0,<8.83.28|>=9.0.0,<9.52.17|>=10.0.0,<10.48.23|>=11.0.0,<11.31.0

Reported by:
GitHub, FriendsOfPHP/security-advisories

[HIGH] OS Command Injection in Laravel Framework

PKSA-17kp-jm2n-vxzz CVE-2020-19316 GHSA-w2pm-r78h-4m7v

Affected version: <5.8.17

Reported by:
GitHub

[HIGH] Improper Input Validation in Laravel

PKSA-7ywf-hktb-jkn9 CVE-2020-24941 GHSA-w68r-5p45-5rqp

Affected version: >=7.0.0,<7.24.0|<6.18.35

Reported by:
GitHub

[MEDIUM] Possible cross-site scripting (XSS) vulnerability in the Blade templating engine

PKSA-njrm-6dtg-m2pc CVE-2021-43808 GHSA-66hf-2p6w-jqfw

Affected version: <6.20.42|>=7.0.0,<7.30.6|>=8.0.0,<8.75.0

Reported by:
GitHub, FriendsOfPHP/security-advisories