CVE-2025-54068CRITICAL · 9.8TrackedCISA KEV

Laravel · Livewire

Laravel Livewire contain a code injection vulnerability that could allow unauthenticated attackers to achieve remote command execution in specific scenarios.

Disclosed

2025-07-17

327 days ago

Status

no honeypot capture yet

on CISA KEV — watching

7-day events

across 0 distinct IPs

7-day spread

0 ASN · 0 cty

0 active days

Top ASNs

No events captured yet.

Top countries

No events captured yet.

References

https://github.com/livewire/livewire/security/advisories/GHSA-29cq-5w36-x7w3
https://github.com/livewire/livewire/commit/ef04be759da41b14d2d129e670533180a44987dc
https://nvd.nist.gov/vuln/detail/CVE-2025-54068

↗ NVD ↗ CISA KEV ↗ Search analyses