VYPR
Moderate severityNVD Advisory· Published Mar 5, 2025· Updated Mar 5, 2025

Laravel has a File Validation Bypass

CVE-2025-27515

Description

Laravel is a web application framework. When using wildcard validation to validate a given file or image field (files.*), a user-crafted malicious request could potentially bypass the validation rules. This vulnerability is fixed in 11.44.1 and 12.1.1.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
laravel/frameworkPackagist
>= 12.0.0, < 12.1.112.1.1
laravel/frameworkPackagist
>= 11.0.0, < 11.44.111.44.1
laravel/frameworkPackagist
< 10.48.2910.48.29

Affected products

3

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.