Skip to content

RCE Via User-Crafted Requests

Critical
taylorotwell published GHSA-v69f-5jxm-hwvv Mar 5, 2025

Package

composer livewire/volt (Composer)

Affected versions

<1.7.0

Patched versions

1.7.0

Description

Malicious, user-crafted request payloads could potentially lead to remote code execution within Volt components.

Severity

Critical

CVE ID

CVE-2025-27517

Weaknesses

No CWEs

Credits