Packagist (Composer) package
backpack/crud
pkg:composer/backpack/crud
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-31114 | Med | — | >= 5.0.0, < 5.0.13 | 5.0.13 | Jun 3, 2026 | backpack/crud provides Create, Read, Update & Delete (CRUD) functions for Backpack, a collection of Laravel packages that help users build custom administration panels. Versions prior to 5.0.13, 4.1.69, and 4.0.63 are vulnerable to cross-site scripting. An attacker could conduct | |
| CVE-2018-20962 | — | < 3.4.9 | 3.4.9 | Aug 8, 2019 | The Backpack\CRUD Backpack component before 3.4.9 for Laravel allows XSS via the select field type. |
- affected >= 5.0.0, < 5.0.13fixed 5.0.13
backpack/crud provides Create, Read, Update & Delete (CRUD) functions for Backpack, a collection of Laravel packages that help users build custom administration panels. Versions prior to 5.0.13, 4.1.69, and 4.0.63 are vulnerable to cross-site scripting. An attacker could conduct
- CVE-2018-20962Aug 8, 2019affected < 3.4.9fixed 3.4.9
The Backpack\CRUD Backpack component before 3.4.9 for Laravel allows XSS via the select field type.