[HIGH] laravel-admin has Arbitrary File Upload vulnerability

PKSA-fwvh-pm3c-1m7b CVE-2023-24249 GHSA-g857-47pm-3r32

Affected version: <=1.8.19

Reported by:
GitHub

[MEDIUM] z-song laravel-admin XSS via the Slug or Name on the Roles screen

PKSA-14t7-my9b-963d CVE-2019-17433 GHSA-fcmh-7492-g4q9

Affected version: =1.7.3

Reported by:
GitHub