Laravel Livewire
By the Year
In 2024 there have been 1 vulnerability in Laravel Livewire with an average score of 8.8 out of ten. Livewire did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2024 as compared to last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 1 | 8.80 |
2023 | 0 | 0.00 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Livewire vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Laravel Livewire Security Vulnerabilities
Cross-Site Request Forgery (CSRF) vulnerability in livewire before v3.0.4
CVE-2024-22859
8.8 - High
- February 01, 2024
Cross-Site Request Forgery (CSRF) vulnerability in livewire before v3.0.4, allows remote attackers to execute arbitrary code getCsrfToken function. NOTE: the vendor disputes this because the 5d88731 commit fixes a usability problem (HTTP 419 status codes for legitimate client activity), not a security problem.
Session Riding
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Laravel Livewire or by Laravel? Click the Watch button to subscribe.