A critical security vulnerability (CVE-2024-13918) in the Laravel framework allows attackers to execute arbitrary JavaScript code on websites running affected versions of the popular PHP framework. The flaw, discovered in Laravel’s debug-mode error page rendering, exposes applications to reflected cross-site scripting (XSS) attacks when running in development configurations. With a CVSS v3.1 score of 8.0 […]
The post Laravel Framework Vulnerability Let Attackers Execute Malicious Java Script appeared first on Cyber Security News.
This article has been indexed from Cyber Security News