HIGHVulnerability
Verified
Global
CISA KEV: Laravel Livewire — Laravel Livewire Code Injection Vulnerability
Friday, March 20, 2026 at 12:00 AM UTC·Source: CISA KEV
Updated: Thursday, April 2, 2026 at 05:46 PM UTC
Executive Summary
Laravel Livewire contain a code injection vulnerability that could allow unauthenticated attackers to achieve remote command execution in specific scenarios.
Analysis
Laravel Livewire contain a code injection vulnerability that could allow unauthenticated attackers to achieve remote command execution in specific scenarios.
Added to CISA Known Exploited Vulnerabilities catalog on 2026-03-20. Remediation due: 2026-04-03.