CVE-2017-14775
EUVD-2022-348028.09.2017, 01:29
Laravel before 5.5.10 mishandles the remember_me token verification process because DatabaseUserProvider does not have constant-time token comparison.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| laravel | laravel | 𝑥 ≤ 5.5.9 |
𝑥
= Vulnerable software versions
Debian Releases
Common Weakness Enumeration