code16 CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

MEDIUM code16 CVE published 2026-06-10

CVE-2026-53634

CVE-2026-53634 is a vulnerability in the Sharp content management framework built for Laravel. An authenticated Sharp user without create permission on a given entity could bypass the authorization layer and either retrieve the creation form or submit new records for that entity. This issue affects versions from 9.0.0 to before 9.22.3 and has been patched in version 9.22.3.

HIGH code16 CVE published 2026-06-10

CVE-2026-44692

CVE-2026-44692 is a high-severity vulnerability in Sharp, a content management framework for Laravel. An authenticated user can exploit this issue to disclose unrelated objects from configured Laravel Storage disks. The vulnerability has been patched in version 9.22.0.