CVE-2025-54068 Laravel Livewire Credential Theft Campaign: 6,000+ Applications Compromised (opens in new tab)
Introduction On May 24, 2026, Imperva observed exploitation attempts against Laravel Livewire applications, blocked by the Imperva Cloud WAF. What initially appeared to be unremarkable deserialization attack traffic turned out to be part of a large-scale credential theft operation exploiting CVE-2025-54068, a critical unauthenticated RCE vulnerability in Laravel Livewire v3 (versions up to v3.6.3). The […] The post appeared first on <a href="
Read the original article