Philipp Adelsberger

**Name of the Vulnerable Software and Affected Versions** Laravel framework versions 11.9.0 through 11.35.1 **Description** The issue is related to reflected cross-site scripting due to improper encoding of request parameters in the debug-mode error page. **Recommendations** For Laravel framework versions 11.9.0 through 11.35.1, update to a version that properly encodes request parameters in the debug-mode error page to prevent reflected cross-site scripting.

**Name of the Vulnerable Software and Affected Versions** Laravel framework versions 11.9.0 through 11.35.1 **Description** The issue is related to reflected cross-site scripting due to improper encoding of route parameters in the debug-mode error page. **Recommendations** For versions 11.9.0 through 11.35.1, update to a version that properly encodes route parameters in the debug-mode error page to prevent reflected cross-site scripting.