CVE-2025-27517: Volt Allows RCE Via User-Crafted Requests

Severity: Critical

CVSS Score: 9.3

Volt is an elegantly crafted functional API for Livewire. Malicious, user-crafted request payloads could potentially lead to remote code execution within Volt components. This vulnerability is fixed in 1.7.0.