An issue was discovered in Laravel before 6.18.35 and 7.x before 7.24.0. The $guarded property is mishandled in some situations involving requests with JSON column nesting expressions.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24941
Reference (s):
- https://blog.laravel.com/security-release-laravel-61835-7240