Spatie Laravel-medialibrary
2 CVEs affecting Spatie Laravel-medialibrary. Latest disclosed: 2026-05-29. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-48557 | High | 8.8 | 2026-05-29 | Spatie Laravel Media Library before version 11.23.0 contains a file upload restriction bypass in FileAdder::defaultSanitizer(). The sanitizer checks only the f… |
CVE-2026-48555 | High | 7.4 | 2026-05-29 | Spatie Laravel Media Library before version 11.23.0 contains a server-side request forgery vulnerability that allows remote attackers to cause the server to is… |