VYPR

Packagist (Composer) package

livewire-filemanager/filemanager

pkg:composer/livewire-filemanager/filemanager

Vulnerabilities (1)

  • CVE-2025-14894Jan 16, 2026
    affected <= 1.0.4

    Livewire Filemanager, commonly used in Laravel applications, contains LivewireFilemanagerComponent.php, which does not perform file type and MIME validation, allowing for RCE through upload of a malicious php file that can then be executed via the /storage/ URL if a commonly perf