CVE-2025-32931

Published
View on NVD ↗
CVSS v3
9.1
CRITICAL
CVSS v2
N/A
Affected
2
PROJECTS

Description

DevDojo Voyager 1.4.0 through 1.8.0, when Laravel 8 or later is used, allows authenticated administrators to execute arbitrary OS commands via a specific php artisan command.

thedevdojo/voyager
thedevdojo/voyager
Voyager - The Missing Laravel Admin
GitHubGitHub
11.8K
lishihihi/voyager-issue-report
lishihihi/voyager-issue-report
Security advisory for a vulnerability in DevDojo Voyager
GitHubGitHub
1