Illuminate/auth
This hub aggregates every CVE we track for Illuminate/auth, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
2
CVEs tracked
0
Critical
0
High
0
In CISA KEV
Severity distribution
MEDIUM2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 2 most recently published vulnerabilities affecting Illuminate/auth.
- CVE-2017-14775Laravel before 5.5.10 mishandles the remember_me token verification process because DatabaseUserProvider does not have constant-time token comparison.5.9
- CVE-2017-9303Laravel 5.4.x before 5.4.22 does not properly constrain the host portion of a password-reset URL, which makes it easier for remote attackers to conduct phishing attacks by specifying an attacker-co...6.1
Product normalization is registry-driven with AI assist and human review. How it works