laravel/framework Security Advisories for v12.32.0 (3)
-
[MEDIUM] Laravel Framework: Temporary Signed URL Path Confusion
PKSA-m5cs-t1y6-qpcs GHSA-crmm-hgp2-wgrp
Affected version: <12.61.1|>=13.0.0,<13.12.0
Reported by:
GitHub -
[HIGH] Laravel Framework: CRLF injection in default email rule
PKSA-3r5d-mb8f-1qw9 GHSA-5vg9-5847-vvmq
Affected version: <12.60.0|>=13.0.0,<=13.9.0
Reported by:
GitHub -
Laravel CRLF injection in default email rule
PKSA-mdq4-51ck-6kdq CVE-2026-48019
Affected version: >=9.0.0,<10.0.0|>=10.0.0,<11.0.0|>=11.0.0,<12.0.0|>=12.0.0,<12.60.0|>=13.0.0,<13.10.0
Reported by:
FriendsOfPHP/security-advisories