filament/forms
php · filament/formsCritical
filament/forms: Disabled RichEditor field XSS in v3
In Filament v3, a disabled RichEditor field renders raw HTML without sanitization, enabling stored XSS.
18 Jun 2026 · act now
In Filament v3, a disabled RichEditor field renders raw HTML without sanitization, enabling stored XSS.