Open Source Vulnerabilities

Scanning summary

Filters

(/9)

keyboard_arrow_down
Overall Severity

1 Critical

4 High

3 Medium

1 Low

0 Unknown

search

Packagist

Source: lockfile:/home/ben/projects/HR/composer.lock

Package Installed version

Fix available

Fix available indicates whether a patch or update exists to address the vulnerabilities found in the corresponding package.

Vulnerability count

Vulnerability count shows the number of vulnerabilities found in the package, counted by each severity level.
play_arrow
laravel/framework v10.48.15

Fix available

Upgrading the package can fix all 2 vulnerabilities.

0

Critical

1

High

1

Medium

0

Low

0

Unknown
Vulnerability ID Aliases Fixed version Severity
GHSA-78fx-h6xr-vch4
CVE-2025-27515, ... CVE-2025-27515
BIT-laravel-2025-27515
GHSA-78fx-h6xr-vch4

10.48.29

6.9

Open in tab
GHSA-gv7v-rgg6-548h
CVE-2024-52301, ... CVE-2024-52301
BIT-laravel-2024-52301
GHSA-gv7v-rgg6-548h

10.48.23

8.7

Open in tab
play_arrow
league/commonmark 2.4.2

Fix available

Upgrading the package can fix all 2 vulnerabilities.

0

Critical

1

High

1

Medium

0

Low

0

Unknown
Vulnerability ID Aliases Fixed version Severity
GHSA-3527-qv2q-pfvx
CVE-2025-46734, ... CVE-2025-46734
GHSA-3527-qv2q-pfvx

2.7.0

6.4

Open in tab
GHSA-c2pc-g5qf-rfrf
 No Aliases

2.6.0

7.5

Open in tab
play_arrow
livewire/livewire v3.5.1

Fix available

Upgrading the package can fix all 2 vulnerabilities.

1

Critical

1

High

0

Medium

0

Low

0

Unknown
Vulnerability ID Aliases Fixed version Severity
GHSA-29cq-5w36-x7w3
CVE-2025-54068, ... CVE-2025-54068
GHSA-29cq-5w36-x7w3

3.6.4

9.2

Open in tab
GHSA-f3cx-396f-7jqp
CVE-2024-47823, ... CVE-2024-47823
GHSA-f3cx-396f-7jqp

3.5.2

7.7

Open in tab
play_arrow
nesbot/carbon 2.72.5

Fix available

Upgrading the package can fix all 1 vulnerabilities.

0

Critical

0

High

1

Medium

0

Low

0

Unknown
Vulnerability ID Aliases Fixed version Severity
GHSA-j3f9-p6hm-5w6q
CVE-2025-22145, ... CVE-2025-22145
GHSA-j3f9-p6hm-5w6q

2.72.6

6.3

Open in tab
play_arrow
symfony/http-foundation v6.4.8

Fix available

Upgrading the package can fix all 1 vulnerabilities.

0

Critical

0

High

0

Medium

1

Low

0

Unknown
Vulnerability ID Aliases Fixed version Severity
GHSA-mrqx-rp3w-jpjp
CVE-2024-50345, ... CVE-2024-50345
GHSA-mrqx-rp3w-jpjp

6.4.14

3.1

Open in tab
play_arrow
symfony/process v6.4.8

Fix available

Upgrading the package can fix all 1 vulnerabilities.

0

Critical

1

High

0

Medium

0

Low

0

Unknown
Vulnerability ID Aliases Fixed version Severity
GHSA-qq5c-677p-737q
CVE-2024-51736, ... CVE-2024-51736
GHSA-qq5c-677p-737q

6.4.14

8.6

Open in tab