CVE-2025-27515

Publication date

2025-03-05 18:45:50

Family

GitHub_M

State

PUBLISHED

Description

Laravel is a web application framework. When using wildcard validation to validate a given file or image field (`files.*`), a user-crafted malicious request could potentially bypass the validation rules. This vulnerability is fixed in 11.44.1 and 12.1.1.