CVE-2020-24940 is a vulnerability in Laravel
Published on September 4, 2020

An issue was discovered in Laravel before 6.18.34 and 7.x before 7.23.2. Unvalidated values are saved to the database in some situations in which table names are stripped during a mass assignment.

NVD

Products Associated with CVE-2020-24940

Want to know whenever a new CVE is published for Laravel? stack.watch will email you.

Laravel

Exploit Probability

EPSS

0.26%

Percentile

49.46%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-24940 is a vulnerability in LaravelPublished on September 4, 2020

Products Associated with CVE-2020-24940

Exploit Probability

CVE-2020-24940 is a vulnerability in Laravel
Published on September 4, 2020