PHP

Laravel API Security Remediation

Name: ApiPosture
Author: ApiPosture

OWASP API Top 10 remediation guides for PHP developers.

40 guides

21 CVEs covered

Broken Authentication
Broken Authentication in Laravel CVE-2017-14704 [Mar 2026] [CVE-2017-14704]

Mar 12, 2026 CVE
Broken Authentication
Broken Authentication and Laravel naturally [CVE-2017-14775]

Mar 12, 2026 CVE
Broken Authentication
Broken Authentication in Laravel CVE-2017-9303 [CVE-2017-9303]

Mar 12, 2026 CVE
Broken Authentication
Broken Authentication in Laravel: CVE-2026-35584 [Apr 2026] [CVE-2026-35584]

Apr 7, 2026 CVE
Broken Authentication
Broken Authentication in Laravel Passport [CVE-2026-39976]

Apr 9, 2026 CVE
Broken Authentication
Broken Authentication in Laravel naturally [April 2026] [GHSA-349c-2h2f-mxf6]

Apr 8, 2026 CVE
Broken Function Level Authorization
Broken Function Level Authorization in Laravel [Mar 2026] [CVE-2017-14704]

Mar 12, 2026 CVE
Broken Function Level Authorization
Broken Function Level Authorization in Laravel [Dec 2017] [CVE-2017-14775]

Mar 12, 2026 CVE
Broken Function Level Authorization
Broken Function Level Authorization - Laravel [Mar 2026] [CVE-2017-9303]

Mar 12, 2026 CVE
Broken Function Level Authorization
Broken Function Level Authorization in Laravel [Apr 2026] [CVE-2026-7091]

Apr 27, 2026 CVE
Broken Function Level Authorization
Broken Function Level Authorization in Laravel [CVE-2026-7109]

Apr 27, 2026 CVE
Broken Object Level Authorization
Broken Object Level Authorization in Laravel [Mar 2026] [CVE-2020-15246]

Mar 12, 2026 CVE
Broken Object Level Authorization
Broken Object Level Authorization in Laravel [CVE-2020-24941]

Mar 12, 2026 CVE
Broken Object Level Authorization
Broken Object Level Authorization in Laravel [April 2026] [CVE-2026-31843]

Apr 16, 2026 CVE
Broken Object Level Authorization
Broken Object Level Authorization in Laravel [CVE-2026-32752]

Mar 19, 2026 CVE
Broken Object Level Authorization
Broken Object Level Authorization in Laravel [Mar 2026] [CVE-2026-33884]

Mar 27, 2026 CVE
Broken Object Level Authorization
Broken Object Level Authorization in Laravel [Apr 2026] [CVE-2026-34456]

Apr 1, 2026 CVE
Broken Object Level Authorization
Broken Object Level Authorization in Laravel [Month Year] [CVE-2026-41903]

May 7, 2026 CVE
Broken Object Level Authorization
Broken Object Level Authorization in Laravel [CVE-2026-7107]

Apr 27, 2026 CVE
Broken Object Property Level Authorization
Broken Object Property Level Authorization and Laravel [CVE-2017-14775]

Mar 12, 2026 CVE
Broken Object Property Level Authorization
Broken Object Property Level Authorization in Laravel [CVE-2017-16894]

Mar 12, 2026 CVE
Broken Object Property Level Authorization
Broken Object Property Level Authorization in Laravel [CVE-2020-24941]

Mar 12, 2026 CVE
Broken Object Property Level Authorization
Broken Object Property Level Authorization in Laravel [CVE-2026-33882]

Mar 27, 2026 CVE
Improper Inventory Management
Improper Inventory Management in Laravel [CVE-2017-14704] [CVE-2017-14704]

Mar 12, 2026 CVE
Improper Inventory Management
Improper Inventory Management: Laravel fix [Month Year] [CVE-2017-14775]

Mar 12, 2026 CVE
Improper Inventory Management
Improper Inventory Management: Laravel CVE-2017-9303 fix [CVE-2017-9303]

Mar 12, 2026 CVE
Injection
Injection in Laravel: CVE-2018-6330 remediation [CVE-2018-6330]

Mar 12, 2026 CVE
Security Misconfiguration
Security Misconfiguration in Laravel (CVE-2017-14704) [CVE-2017-14704]

Mar 12, 2026 CVE
Security Misconfiguration
Security Misconfiguration: Laravel remember_me fix [CVE-2017-14775]

Mar 12, 2026 CVE
Security Misconfiguration
Security Misconfiguration and Laravel [Mar 2026] [CVE-2017-9303]

Mar 12, 2026 CVE
Sensitive Data Exposure
Sensitive Data Exposure in Laravel remember_me [Mar 2026] [CVE-2017-14775]

Mar 12, 2026 CVE
Sensitive Data Exposure
Sensitive Data Exposure in Laravel [Mar 2026] [CVE-2017-16894]

Mar 12, 2026 CVE
SSRF
SSRF in Laravel: Remediation for CVE-2017-14704 [CVE-2017-14704]

Mar 12, 2026 CVE
SSRF
SSRF in Laravel remediation guide [Mar 2026] [CVE-2017-14775]

Mar 12, 2026 CVE
SSRF
SSRF in Laravel: Remediation CVE-2017-9303 [March 2026] [CVE-2017-9303]

Mar 12, 2026 CVE
SSRF
SSRF in Laravel: Remediation for CVE-2026-34443 [Jun 2026] [CVE-2026-34443]

Mar 31, 2026 CVE
SSRF
SSRF in Laravel remediation guide [Apr 2026] [GHSA-q4q6-r8wh-5cgh]

Apr 29, 2026 CVE
Unrestricted Resource Consumption
Unrestricted Resource Consumption in Laravel (Remediation) [CVE-2017-14704]

Mar 12, 2026 CVE
Unrestricted Resource Consumption
Unrestricted Resource Consumption in Laravel CVE-2017-14775 [CVE-2017-14775]

Mar 12, 2026 CVE
Unrestricted Resource Consumption
Unrestricted Resource Consumption in Laravel - Fixed Guide [CVE-2017-9303]

Mar 12, 2026 CVE

>_ Scan your PHP API

Detect these vulnerabilities automatically

ApiPosture scans your API codebase and flags OWASP issues before they reach production.

Get ApiPosture Pro All Frameworks

Laravel API Security Remediation

Detect these vulnerabilities automatically

Cookie preferences