Vulnerability DatabaseCVE-2023-24065
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2023-24065
Published:January 29, 2023
Updated:May 25, 2026
NOSH 4a5cfdb allows stored XSS via the create user page. For example, a first name (of a physician, assistant, or billing user) can have a JavaScript payload that is executed upon visiting the /users/2/1 page. This may allow attackers to steal Protected Health Information because the product is for health charting.
Affected Packages
trungtnm/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
mshule/laravel-pipes (PHP):
Affected version(s) =dev-dependabot/composer/league/flysystem-1.1.4 <v1.2
Fix Suggestion:
Update to version v1.2
itsmill3rtime/sentry-laravel-5-7 (PHP):
Affected version(s) =dev-releases/0.4.x <0.4.1
Fix Suggestion:
Update to version 0.4.1
rsands2801/sentry-laravel (PHP):
Affected version(s) =dev-releases/0.6.x <0.6.1
Fix Suggestion:
Update to version 0.6.1
auto-site-generator/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
tahaghafuri/laravel-fix (PHP):
Affected version(s) >=v5.2.23 <v5.3.0
Fix Suggestion:
Update to version v5.3.0
thelegacy/laravel (PHP):
Affected version(s) >=v5.2.23 <v5.3.0
Fix Suggestion:
Update to version v5.3.0
trungtnm/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
sentry/sentry-laravel (PHP):
Affected version(s) =dev-feature/laravel-octane-support <dev-feature/normalize-queue-name
Fix Suggestion:
Update to version dev-feature/normalize-queue-name
macromindonline/sentry-laravel (PHP):
Affected version(s) =dev-releases/0.4.x <0.4.1
Fix Suggestion:
Update to version 0.4.1
jjsoft-ar/platform (PHP):
Affected version(s) =2.0.x-dev
Fix Suggestion:
Update to version no_fix
csgt/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
itsmill3rtime/sentry-laravel-5-7 (PHP):
Affected version(s) =dev-releases/0.9.x <0.9.1
Fix Suggestion:
Update to version 0.9.1
nosh2/nosh2 (PHP):
Affected version(s) >=dev-dependabot/npm_and_yarn/loader-utils-and-resolve-url-loader-1.4.2 <dev-dependabot/composer/guzzlehttp/guzzle-7.4.3
Fix Suggestion:
Update to version dev-dependabot/composer/guzzlehttp/guzzle-7.4.3
bowero/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
rsands2801/sentry-laravel (PHP):
Affected version(s) =dev-releases/0.5.x <0.6.0
Fix Suggestion:
Update to version 0.6.0
sentry/sentry-laravel (PHP):
Affected version(s) =dev-feature/user-ip-from-request <dev-first-class-callable
Fix Suggestion:
Update to version dev-first-class-callable
jefhar/laravel-domain-oriented (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
sentry/sentry-laravel (PHP):
Affected version(s) =dev-3.x-changelog <dev-3.x-tmp
Fix Suggestion:
Update to version dev-3.x-tmp
wuhaohui/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=v2.7.1 <v2.8.0
Fix Suggestion:
Update to version v2.8.0
sentry/sentry-laravel (PHP):
Affected version(s) =dev-feature/read-context-from-exception <dev-feature/redis-cache-hit-miss
Fix Suggestion:
Update to version dev-feature/redis-cache-hit-miss
gear/laravel-starter (PHP):
Affected version(s) =1.0.4
Fix Suggestion:
Update to version no_fix
itsmill3rtime/sentry-laravel-5-7 (PHP):
Affected version(s) =dev-releases/0.5.x <0.6.0
Fix Suggestion:
Update to version 0.6.0
aerni/translator (PHP):
Affected version(s) =dev-dependabot/composer/league/flysystem-1.1.4 <dev-dependabot/npm_and_yarn/minimist-1.2.6
Fix Suggestion:
Update to version dev-dependabot/npm_and_yarn/minimist-1.2.6
prwlr/laravue (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
sonarsoftware/customer_portal (PHP):
Affected version(s) >=1.0.0 <1.0.25
Fix Suggestion:
Update to version 1.0.25
itsmill3rtime/sentry-laravel-5-7 (PHP):
Affected version(s) =dev-master <0.1.0
Fix Suggestion:
Update to version 0.1.0
bugsnag/bugsnag-laravel (PHP):
Affected version(s) =dev-guzzle-alias <dev-handle-ooms
Fix Suggestion:
Update to version dev-handle-ooms
sergeyugai/badpack (PHP):
Affected version(s) =dev-dependabot/composer/league/flysystem-1.1.4 <dev-dependabot/composer/symfony/http-kernel-5.4.20
Fix Suggestion:
Update to version dev-dependabot/composer/symfony/http-kernel-5.4.20
swisnl/game-of-tests-laravel-demo (PHP):
Affected version(s) >=1.0.0 <dev-dependabot/npm_and_yarn/path-parse-1.0.7
Fix Suggestion:
Update to version dev-dependabot/npm_and_yarn/path-parse-1.0.7
ymonkey/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
asgardcms/platform (PHP):
Affected version(s) >=3.0.0 <dev-dependabot/npm_and_yarn/Themes/Adminlte/bootstrap-3.4.1
Fix Suggestion:
Update to version dev-dependabot/npm_and_yarn/Themes/Adminlte/bootstrap-3.4.1
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=v2.9.0 <v2.11.1
Fix Suggestion:
Update to version v2.11.1
googleads/googleads-php-lib (PHP):
Affected version(s) =dev-update-symfony-serializer <dev-PierrickVoulet-patch-1
Fix Suggestion:
Update to version dev-PierrickVoulet-patch-1
morenorafael/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
prwlr/laravue (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
sentry/sentry-laravel (PHP):
Affected version(s) =1.0.1 <1.0.2
Fix Suggestion:
Update to version 1.0.2
sentry/sentry-laravel (PHP):
Affected version(s) >=0.x-dev <0.4.0
Fix Suggestion:
Update to version 0.4.0
george/laraadmin (PHP):
Affected version(s) >=1.0.2 <1.0.9
Fix Suggestion:
Update to version 1.0.9
macromindonline/sentry-laravel (PHP):
Affected version(s) =dev-releases/0.6.x <0.6.1
Fix Suggestion:
Update to version 0.6.1
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=dev-feature-flags <dev-fix-crash-when-sessions-disabled
Fix Suggestion:
Update to version dev-fix-crash-when-sessions-disabled
jayywalker/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
sentry/sentry-laravel (PHP):
Affected version(s) =0.6.1 <0.6.2
Fix Suggestion:
Update to version 0.6.2
sentry/sentry-laravel (PHP):
Affected version(s) =dev-cleanup-tracing-event-handler <dev-codecov
Fix Suggestion:
Update to version dev-codecov
macromindonline/sentry-laravel (PHP):
Affected version(s) =dev-releases/0.5.x <0.6.0
Fix Suggestion:
Update to version 0.6.0
autotim/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
bonsai/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
jefhar/laravel-domain-oriented (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
sonarsoftware/customer_portal (PHP):
Affected version(s) =0.0.1 <dev-dependabot/npm_and_yarn/portal/axios-0.19.0
Fix Suggestion:
Update to version dev-dependabot/npm_and_yarn/portal/axios-0.19.0
cvepdb/cms (PHP):
Affected version(s) >=v5.2.23 <v5.3.0
Fix Suggestion:
Update to version v5.3.0
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=v2.14.0 <v2.15.0-alpha-1
Fix Suggestion:
Update to version v2.15.0-alpha-1
autotim/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
sentry/sentry-laravel (PHP):
Affected version(s) >=1.4.0 <1.5.0
Fix Suggestion:
Update to version 1.5.0
asgardcms/platform (PHP):
Affected version(s) >=3.5.0 <dev-dependabot/npm_and_yarn/Themes/Flatly/marked-4.0.10
Fix Suggestion:
Update to version dev-dependabot/npm_and_yarn/Themes/Flatly/marked-4.0.10
c57fr/l5 (PHP):
Affected version(s) >=v5.2.23 <v5.3.0
Fix Suggestion:
Update to version v5.3.0
dotsyntax/scaffolding (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
shopex/luban-desktop (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
bugsnag/bugsnag-laravel (PHP):
Affected version(s) =dev-kattrali/laravel56-upgrading <dev-laravel56-queue-tests
Fix Suggestion:
Update to version dev-laravel56-queue-tests
myckhel/laravel-example-template (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
rsands2801/sentry-laravel (PHP):
Affected version(s) =dev-releases/0.4.x <0.4.1
Fix Suggestion:
Update to version 0.4.1
sentry/sentry-laravel (PHP):
Affected version(s) >=1.6.0 <1.7.1
Fix Suggestion:
Update to version 1.7.1
mmockelyn/laravel (PHP):
Affected version(s) >=v5.2.23 <v5.3.0
Fix Suggestion:
Update to version v5.3.0
taerp/finance (PHP):
Affected version(s) =1.0.0.x-dev
Fix Suggestion:
Update to version no_fix
chrsc/laraadmin (PHP):
Affected version(s) >=1.0.1 <1.0.9
Fix Suggestion:
Update to version 1.0.9
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=v2.15.0 <v2.16.0
Fix Suggestion:
Update to version v2.16.0
alexkb/laravel-docker (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
sentry/sentry-laravel (PHP):
Affected version(s) =dev-queue-tracing-integration <dev-readme-contributing-doc-improvements
Fix Suggestion:
Update to version dev-readme-contributing-doc-improvements
googleads/googleads-php-lib (PHP):
Affected version(s) =dev-update-php-72
Fix Suggestion:
Update to version no_fix
opengis/laravel-geoserver (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
macromindonline/sentry-laravel (PHP):
Affected version(s) =dev-releases/0.7.x <0.8.0
Fix Suggestion:
Update to version 0.8.0
bugsnag/bugsnag-laravel (PHP):
Affected version(s) =v2.2.0 <v2.3.0
Fix Suggestion:
Update to version v2.3.0
andreadatri/maboro (PHP):
Affected version(s) =dev-dev
Fix Suggestion:
Update to version no_fix
opengis/laravel-geoserver (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
np21/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
itsmill3rtime/sentry-laravel-5-7 (PHP):
Affected version(s) =dev-releases/0.7.x <0.8.0
Fix Suggestion:
Update to version 0.8.0
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=v2.17.0 <v2.20.1
Fix Suggestion:
Update to version v2.20.1
laravelista/kyle (PHP):
Affected version(s) =0.1.0 <0.2.0
Fix Suggestion:
Update to version 0.2.0
michalwolinski/wbiztool-laravel (PHP):
Affected version(s) =dev-dependabot/composer/league/flysystem-1.1.4 <dev-dependabot/composer/symfony/http-foundation-4.4.7
Fix Suggestion:
Update to version dev-dependabot/composer/symfony/http-foundation-4.4.7
musoftware/logger-laravel (PHP):
Affected version(s) >=0.1.0 <3.0.0
Fix Suggestion:
Update to version 3.0.0
phpsandbox/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
rubenarakelyan/laravel-session-files-to-redis (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
staufenbiel/laravel (PHP):
Affected version(s) >=dev-master <=v0.1.12
Fix Suggestion:
Update to version no_fix
sentry/sentry-laravel (PHP):
Affected version(s) =dev-feature/add-sql-origin-to-query-tracing-span <dev-feature/context
Fix Suggestion:
Update to version dev-feature/context
croudtech/sentry-laravel (PHP):
Affected version(s) >=dev-master <=1.7.3
Fix Suggestion:
Update to version no_fix
codex/codex (PHP):
Affected version(s) =dev-master <1.0.0
Fix Suggestion:
Update to version 1.0.0
asgardcms/platform (PHP):
Affected version(s) >=2.0.0 <dev-dependabot/npm_and_yarn/Themes/Flatly/debug-and-browser-sync-and-compression-and-express-and-serve-index-2.6.9
Fix Suggestion:
Update to version dev-dependabot/npm_and_yarn/Themes/Flatly/debug-and-browser-sync-and-compression-and-express-and-serve-index-2.6.9
l7wahn/ladmin (PHP):
Affected version(s) >=1.0.1 <1.0.9
Fix Suggestion:
Update to version 1.0.9
sonarsoftware/customer_portal (PHP):
Affected version(s) =dev-clear-cache <dev-master
Fix Suggestion:
Update to version dev-master
milhouse1337/laravel (PHP):
Affected version(s) =v5.2.23 <v5.2.24
Fix Suggestion:
Update to version v5.2.24
googleads/googleads-php-lib (PHP):
Affected version(s) =37.0.0 <37.1.0
Fix Suggestion:
Update to version 37.1.0
larashop/larashop (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
aquaswim/laravel-with-voyager (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
np21/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
darekmeco/platform (PHP):
Affected version(s) >=2.0.0 <=3.2.1
Fix Suggestion:
Update to version no_fix
brnbio/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
googleads/googleads-php-lib (PHP):
Affected version(s) =38.0.0 <39.0.0
Fix Suggestion:
Update to version 39.0.0
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=dev-templates-update-20250124-172756 <dev-x
Fix Suggestion:
Update to version dev-x
sentry/sentry-laravel (PHP):
Affected version(s) =dev-fix-command-input-handling <dev-fix-consuming-body-stream
Fix Suggestion:
Update to version dev-fix-consuming-body-stream
dentro/nge.noob (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
saritasa/opbeat-laravel (PHP):
Affected version(s) =dev-master <0.1.0
Fix Suggestion:
Update to version 0.1.0
burgess1109/file_package (PHP):
Affected version(s) >=dev-master <=1.0.0
Fix Suggestion:
Update to version no_fix
dentro/nge.noob (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
sentry/sentry-laravel (PHP):
Affected version(s) =0.10.0 <0.10.1
Fix Suggestion:
Update to version 0.10.1
yozh/test-newsblog (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
codicastudio/sentry (PHP):
Affected version(s) =1.0.0
Fix Suggestion:
Update to version no_fix
miljan9602/bugsnag-laravel (PHP):
Affected version(s) >=dev-auto-on-session-tracking <v1.0.0
Fix Suggestion:
Update to version v1.0.0
bugsnag/bugsnag-laravel (PHP):
Affected version(s) =dev-kattrali/maze-docker-install-from-dist <dev-laravel-9/testbench
Fix Suggestion:
Update to version dev-laravel-9/testbench
sentry/sentry-laravel (PHP):
Affected version(s) =dev-test <dev-test-command
Fix Suggestion:
Update to version dev-test-command
itsmill3rtime/sentry-laravel-5-7 (PHP):
Affected version(s) =dev-laravel-4-x <10
Fix Suggestion:
Update to version 10
bugsnag/bugsnag-laravel (PHP):
Affected version(s) =dev-laravel-8-maze-runner-fixture <dev-laravel8-queue-tests
Fix Suggestion:
Update to version dev-laravel8-queue-tests
rubenarakelyan/zomato-api-php (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
brnbio/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
jungle-gecko/sitarium (PHP):
Affected version(s) =v1.0.0 <v1.1.0
Fix Suggestion:
Update to version v1.1.0
digbang/laravel-project (PHP):
Affected version(s) =5.2.x-dev <5.3.0
Fix Suggestion:
Update to version 5.3.0
lv2technologies/laravel (PHP):
Affected version(s) >=v5.2.23 <v5.3.0
Fix Suggestion:
Update to version v5.3.0
livecms/livecms (PHP):
Affected version(s) >=v0.x-dev <v1.0.1
Fix Suggestion:
Update to version v1.0.1
darekmeco/platform (PHP):
Affected version(s) >=dev-master <1.0.0
Fix Suggestion:
Update to version 1.0.0
bugsnag/bugsnag-laravel (PHP):
Affected version(s) =v2.12.0 <v2.13.0
Fix Suggestion:
Update to version v2.13.0
sentry/sentry-laravel (PHP):
Affected version(s) =dev-master <dev-mdtro/add-dependency-review
Fix Suggestion:
Update to version dev-mdtro/add-dependency-review
macromindonline/sentry-laravel (PHP):
Affected version(s) >=dev-master <0.4.0
Fix Suggestion:
Update to version 0.4.0
healthengine/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
sentry/sentry-laravel (PHP):
Affected version(s) >=1.0.0-beta2 <1.0.0-beta5
Fix Suggestion:
Update to version 1.0.0-beta5
deadem/djem (PHP):
Affected version(s) >=dev-master <=dev-vuetify
Fix Suggestion:
Update to version no_fix
imaginacms/platform (PHP):
Affected version(s) =dev-pinturas-update <dev-upstream-master
Fix Suggestion:
Update to version dev-upstream-master
congraph/cms (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
bugsnag/bugsnag-laravel (PHP):
Affected version(s) =dev-laravel-10-test-fixture <dev-laravel-11-context
Fix Suggestion:
Update to version dev-laravel-11-context
codicastudio/sentry-laravel (PHP):
Affected version(s) >=0.1.0 <=1.8.0
Fix Suggestion:
Update to version no_fix
nbrabant/laraadmin (PHP):
Affected version(s) >=1.0.1 <1.0.9
Fix Suggestion:
Update to version 1.0.9
sanin/lara (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
folklore/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
hakoncms/hakoncms (PHP):
Affected version(s) =dev-dev
Fix Suggestion:
Update to version no_fix
sentry/sentry-laravel (PHP):
Affected version(s) =1.x-dev <dev-kamilogorek-patch-1
Fix Suggestion:
Update to version dev-kamilogorek-patch-1
chrsm/prayerletters (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
laravelfy/laravel (PHP):
Affected version(s) >=v5.2.23 <v5.3.0
Fix Suggestion:
Update to version v5.3.0
coloredcow/laravel-ccda (PHP):
Affected version(s) =dev-test
Fix Suggestion:
Update to version no_fix
imaginacms/platform (PHP):
Affected version(s) >=2.0 <dev-imaginacms8.x
Fix Suggestion:
Update to version dev-imaginacms8.x
wuhaohui/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
nosh2/nosh2 (PHP):
Affected version(s) >=dev-dependabot/composer/guzzlehttp/guzzle-7.4.4 <=dev-dependabot/composer/laravel/framework-8.40.0
Fix Suggestion:
Update to version no_fix
neomerx/limoncello-collins (PHP):
Affected version(s) =dev-master <v3.0.0-beta-2
Fix Suggestion:
Update to version v3.0.0-beta-2
aquaswim/laravel-with-voyager (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
drnkwati/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=dev-auto-on-session-tracking <dev-discard-classes
Fix Suggestion:
Update to version dev-discard-classes
nbaskoff/beetlecms (PHP):
Affected version(s) >=v5.2.23 <v5.3.0
Fix Suggestion:
Update to version v5.3.0
imagina/cms-platform (PHP):
Affected version(s) >=2.0 <dev-imaginacms8.x
Fix Suggestion:
Update to version dev-imaginacms8.x
ricadesign/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
gab88slash/laravel-extended-stub (PHP):
Affected version(s) >=v5.2.23 <=v5.2.31.1
Fix Suggestion:
Update to version no_fix
ricadesign/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
sentry/sentry-laravel (PHP):
Affected version(s) >=dev-release/2.7.0 <2.9.0
Fix Suggestion:
Update to version 2.9.0
widdy/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
rsands2801/sentry-laravel (PHP):
Affected version(s) >=dev-master <0.4.0
Fix Suggestion:
Update to version 0.4.0
danieltorscho/laravel (PHP):
Affected version(s) >=v5.2.23 <v5.3.0
Fix Suggestion:
Update to version v5.3.0
sentry/sentry-laravel (PHP):
Affected version(s) =dev-release/2.14.1 <2.14.2
Fix Suggestion:
Update to version 2.14.2
sentry/sentry-laravel (PHP):
Affected version(s) =dev-add-logger-context-as-extra-context <dev-add-more-user-context-attributes
Fix Suggestion:
Update to version dev-add-more-user-context-attributes
aasisvinayak/shop (PHP):
Affected version(s) =dev-dev <dev-master
Fix Suggestion:
Update to version dev-master
inoplate/inoplate (PHP):
Affected version(s) >=dev-develop <=v0.1.1
Fix Suggestion:
Update to version no_fix
crowdtruth/crowdtruth (PHP):
Affected version(s) =dev-laravel <dev-lukasz
Fix Suggestion:
Update to version dev-lukasz
wbswjc/laravel (PHP):
Affected version(s) >=v5.2.23 <v5.3.0
Fix Suggestion:
Update to version v5.3.0
lromanzini/laravel (PHP):
Affected version(s) >=dev-master <5.0.x-dev
Fix Suggestion:
Update to version 5.0.x-dev
sentry/sentry-laravel (PHP):
Affected version(s) =dev-lighthouse-integration <dev-limit-query-source
Fix Suggestion:
Update to version dev-limit-query-source
laraeast/laravel (PHP):
Affected version(s) >=v5.2.23 <v5.3.0
Fix Suggestion:
Update to version v5.3.0
drnkwati/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=dev-reinstate-unstable-tests <dev-temp/test
Fix Suggestion:
Update to version dev-temp/test
danielstonies/sentry-laravel (PHP):
Affected version(s) >=dev-feature/prevent-duplicates <0.1.0
Fix Suggestion:
Update to version 0.1.0
sentry/sentry-laravel (PHP):
Affected version(s) =0.11.0 <1.0.0-beta1
Fix Suggestion:
Update to version 1.0.0-beta1
ymonkey/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=v2.0.0 <v2.1.0
Fix Suggestion:
Update to version v2.1.0
dwij/laraadmin (PHP):
Affected version(s) >=1.0.1 <1.0.9
Fix Suggestion:
Update to version 1.0.9
sentry/sentry-laravel (PHP):
Affected version(s) =1.2.0 <1.2.1
Fix Suggestion:
Update to version 1.2.1
myckhel/laravel-example-template (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
zaxx44a/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
sentry/sentry-laravel (PHP):
Affected version(s) =dev-byk/ref/modern-craft-config <dev-cache-events
Fix Suggestion:
Update to version dev-cache-events
bowero/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
itsmill3rtime/sentry-laravel-5-7 (PHP):
Affected version(s) =dev-releases/0.6.x <0.6.1
Fix Suggestion:
Update to version 0.6.1
polly3d/laravel-kit (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
furkankadioglu/modvelbase (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
sentry/sentry-laravel (PHP):
Affected version(s) >=dev-release/2.9.0 <dev-release/2.10.0
Fix Suggestion:
Update to version dev-release/2.10.0
sentry/sentry-laravel (PHP):
Affected version(s) =0.8.1 <0.8.2
Fix Suggestion:
Update to version 0.8.2
morenorafael/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
damnyan/laravel-with-useracl (PHP):
Affected version(s) =v1.0
Fix Suggestion:
Update to version no_fix
sentry/sentry-laravel (PHP):
Affected version(s) =2.10.1 <dev-release/2.10.1
Fix Suggestion:
Update to version dev-release/2.10.1
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=dev-laravel-vapor <dev-maze-runner-tidy
Fix Suggestion:
Update to version dev-maze-runner-tidy
shridharkaushik29/laravel-angular (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
laravel/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
bugsnag/bugsnag-laravel (PHP):
Affected version(s) =dev-fix-unit-tests <dev-fix-unstable-tests
Fix Suggestion:
Update to version dev-fix-unstable-tests
sentry/sentry-laravel (PHP):
Affected version(s) =2.12.0 <dev-release/2.12.0
Fix Suggestion:
Update to version dev-release/2.12.0
laravel/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
rubenarakelyan/zomato-api-php (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
evgenbel/platform (PHP):
Affected version(s) >=2.0.0 <2.0.1
Fix Suggestion:
Update to version 2.0.1
itsmill3rtime/sentry-laravel-5-7 (PHP):
Affected version(s) =dev-releases/0.8.x <0.9.0
Fix Suggestion:
Update to version 0.9.0
folklore/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
rubenarakelyan/laravel-session-files-to-redis (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
googleads/googleads-php-lib (PHP):
Affected version(s) >=41.0.0 <46.1.0
Fix Suggestion:
Update to version 46.1.0
imagina/cms-platform (PHP):
Affected version(s) =dev-pinturas-update <dev-upstream-master
Fix Suggestion:
Update to version dev-upstream-master
bkwld/decoy (PHP):
Affected version(s) =5.3.0 <5.3.1
Fix Suggestion:
Update to version 5.3.1
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=dev-fix/fixture-memory <dev-fixture-cleanup
Fix Suggestion:
Update to version dev-fixture-cleanup
alexkb/laravel-docker (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
sentry/sentry-laravel (PHP):
Affected version(s) =dev-propose-span-helper <dev-queue-improvements
Fix Suggestion:
Update to version dev-queue-improvements
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=dev-new-shutdown-strategy <dev-redacted-keys
Fix Suggestion:
Update to version dev-redacted-keys
zaxx44a/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
chrsm/prayerletters (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=v2.4.0 <v2.7.0
Fix Suggestion:
Update to version v2.7.0
ziperrom1/laravel-boilerplate (PHP):
Affected version(s) >=dev-dev <=v1.0.1-npm-publish
Fix Suggestion:
Update to version no_fix
nencerpackagist/asgardcms (PHP):
Affected version(s) =2.0
Fix Suggestion:
Update to version no_fix
sentry/sentry-laravel (PHP):
Affected version(s) >=dev-feature/fix-empty-transaction-context <dev-feature/github-actions-migration
Fix Suggestion:
Update to version dev-feature/github-actions-migration
phpsandbox/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
burgess1109/file_transfer (PHP):
Affected version(s) =dev-master
Fix Suggestion:
Update to version no_fix
conversoft/laravel (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
yozh/test-newsblog (PHP):
Affected version(s) =5.2.x-dev <v5.2.0
Fix Suggestion:
Update to version v5.2.0
asgardcms/platform (PHP):
Affected version(s) =test <dev-dependabot/npm_and_yarn/Themes/Adminlte/axios-0.21.1
Fix Suggestion:
Update to version dev-dependabot/npm_and_yarn/Themes/Adminlte/axios-0.21.1
shopex/luban-desktop (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
bugsnag/bugsnag-laravel (PHP):
Affected version(s) >=dev-release/v2.23.0 <dev-release/v2.25.1
Fix Suggestion:
Update to version dev-release/v2.25.1
widdy/laravel (PHP):
Affected version(s) >=v5.2.23 <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
tjventurini/laravel-blueprint (PHP):
Affected version(s) =5.2.x-dev <5.3.x-dev
Fix Suggestion:
Update to version 5.3.x-dev
sentry/sentry-laravel (PHP):
Affected version(s) >=1.9.0 <2.2.0
Fix Suggestion:
Update to version 2.2.0
nirmit/laraadmin (PHP):
Affected version(s) >=1.0.1 <1.0.9
Fix Suggestion:
Update to version 1.0.9
vinkas/auth (PHP):
Affected version(s) =dev-laravel <dev-master
Fix Suggestion:
Update to version dev-master
bugsnag/bugsnag-laravel (PHP):
Affected version(s) =dev-PLAT-13640-crumb <dev-PLAT-13642-laravel12
Fix Suggestion:
Update to version dev-PLAT-13642-laravel12
Related Resources (5)
https://github.com/shihjay2/docker-nosh
https://github.com/shihjay2/nosh2/tree/4a5cfdbd73f6a2ab5ee43a33d173c46fe0271533
https://noshemr.wordpress.com
https://github.com/shihjay2/nosh2/issues/202
https://gist.github.com/abbisQQ/e0967d5b8355087c8e224bdd1ace3bf3
Do you need more information?
Contact Us
CVSS v4
Base Score:
5.1
Attack Vector
NETWORK
Attack Complexity
LOW
Attack Requirements
NONE
Privileges Required
LOW
User Interaction
PASSIVE
Vulnerable System Confidentiality
LOW
Vulnerable System Integrity
LOW
Vulnerable System Availability
NONE
Subsequent System Confidentiality
LOW
Subsequent System Integrity
LOW
Subsequent System Availability
NONE
CVSS v3
Base Score:
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality
LOW
Integrity
LOW
Availability
NONE
Weakness Type (CWE)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-79
EPSS
Base Score:
0.38