Vulnerabilidades en filamentphp
10 resultadosCVE-2024-51758LOWExported files stored in default (`public`) filesystem if not reconfigured in filamentEPSS 0.5%CVE-2024-47186MEDIUMFilament has unvalidated ColorColumn and ColorEntry values that can be used for Cross-site ScriptingEPSS 0.4%CVE-2025-67507HIGHFilament's multi-factor authentication (app) recovery codes can be used multiple timesEPSS 0.3%CVE-2026-33080HIGHFilament: Unvalidated Range and Values summarizer values can be used for XSSEPSS 0.3%CVE-2026-48166MEDIUMFilament: Timing-based user enumeration on login pageEPSS 0.2%CVE-2026-48500MEDIUMFilament: Unauthenticated temporary file upload on auth pagesEPSS 0.2%CVE-2026-48505HIGHFilament: Multi-factor authentication (app) recovery codes can still be used multiple times via concurrent submissionEPSS 0.2%CVE-2026-48067MEDIUMFilament: Inconsistent scope enforcement for AttachAction and AssociateAction Select fieldsEPSS 0.2%CVE-2026-55409HIGHFilament: Disabled RichEditor field state can be used for XSSEPSS 0.2%CVE-2026-48167MEDIUMFilament: Unvalidated ImageColumn and ImageEntry values can be used for XSSEPSS 0.1%