CNNVD-202601-4548 Information

CNNVD ID

CNNVD-202601-4548

Related CVE

CVE-2020-36950

• CNNVD Published: 2026-01-27

Description (Chinese)

Laravel Nova是Laravel开源的一个管理面板软件。 Laravel Nova 3.7.0版本存在安全漏洞，该漏洞源于对range参数的操作不当，可能导致拒绝服务攻击。

Description (English)

Laravel Nova is a management panel software for the Laravel Open Source. There is a security loophole in version 3.7.0 of Laravel Nova, which stems from the improper operation of the Range parameters, which may lead to a denial of service attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Laravel

Published

2026-01-27

Last Modified

2026-02-24

References

https://nova.laravel.com/ https://www.exploit-db.com/exploits/49198 https://nova.laravel.com/releases https://www.vulncheck.com/advisories/laravel-nova-range-dos https://access.redhat.com/security/cve/cve-2020-36950

Patch

https://nova.laravel.com/releases