Packagist (Composer) package
filament/actions
pkg:composer/filament/actions
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-48067 | — | >= 4.0.0, < 4.11.4 | 4.11.4 | Jun 11, 2026 | The `recordSelectOptionsQuery()` method may be used to scope the options available in the `Select` field for `AttachAction` and `AssociateAction`. However, the built-in validation rule for these fields did not apply the same scope. As a result, a user who can trigger these action | ||
| CVE-2024-51758 | Low | — | >= 3.2.0, < 3.2.123 | 3.2.123 | Nov 7, 2024 | Filament is a collection of full-stack components for accelerated Laravel development. All Filament features that interact with storage use the `default_filesystem_disk` config option. This allows the user to easily swap their storage driver to something production-ready like `s3 |
- CVE-2026-48067Jun 11, 2026affected >= 4.0.0, < 4.11.4fixed 4.11.4
The `recordSelectOptionsQuery()` method may be used to scope the options available in the `Select` field for `AttachAction` and `AssociateAction`. However, the built-in validation rule for these fields did not apply the same scope. As a result, a user who can trigger these action
- affected >= 3.2.0, < 3.2.123fixed 3.2.123
Filament is a collection of full-stack components for accelerated Laravel development. All Filament features that interact with storage use the `default_filesystem_disk` config option. This allows the user to easily swap their storage driver to something production-ready like `s3