Laravel Security: Top 7 Mistakes Developers Make

I often see the question: "Is Laravel secure?", and in this video, let's take a look at what the framework offers, and how developers use or misuse the security features. 00:00 Intro 00:37 Blade XSS Attack 02:34 Protect Your .env File 04:34 Don't Use $request-all() 05:53 File Upload: Client Data 06:38 APP_DEBUG=true in Production 08:17 CSRF and Route::get() 09:54 Rate Limiting Links mentioned in the video: Blade: Displaying Unescaped Data https://laravel.com/docs/8.x/blade#di... How to use Laravel .env and .env.example files? https://blog.quickadminpanel.com/how-... Danger of Using $request-all(), and How to Protect    • Danger of Using $request-all(), and How to...   Uploaded File Information: https://laravel.com/docs/8.x/filesyst... Configuration: Debug Mode https://laravel.com/docs/8.x/configur... Laravel .env.example: APP_XXX Values Explained    • Laravel .env.example: APP_XXX Values Expla...   CSRF Protection: https://laravel.com/docs/8.x/csrf Routing: Rate Limiting https://laravel.com/docs/8.x/routing#... - - - - Support the channel by checking out our products: Enroll in my Laravel courses: https://laraveldaily.teachable.com?ut... Try our Laravel QuickAdminPanel: https://bit.ly/quickadminpanel Buy my ready-made Laravel scripts: https://laraveldaily.gumroad.com Purchase my Livewire Kit: https://livewirekit.com Subscribe to my weekly newsletter: http://bit.ly/laravel-newsletter

Join Today
Laravel Security Guide: How to Fix These 6 Common Mistakes
▶︎

Laravel Security Guide: How to Fix These 6 Common Mistakes

Eloquent Performance: TOP 3 Mistakes Developers Make
▶︎

Eloquent Performance: TOP 3 Mistakes Developers Make

Top 5 Laravel "Bad Practices" (My Opinion)
▶︎

Top 5 Laravel "Bad Practices" (My Opinion)

Optimize Laravel Queries & Reduce Memory Usage for Faster Performance | Laravel Query Optimization
▶︎

Optimize Laravel Queries & Reduce Memory Usage for Faster Performance | Laravel Query Optimization

I Tried Every Major Linux Distro So You Don't Have To (Here's What I Found)
▶︎

I Tried Every Major Linux Distro So You Don't Have To (Here's What I Found)

Trump Gets Booed & Falls Asleep During NBA Finals, Claims War is Almost Over & Goodbye Spencer Pratt
▶︎

Trump Gets Booed & Falls Asleep During NBA Finals, Claims War is Almost Over & Goodbye Spencer Pratt

Attacking AI - Jason Haddix - NDC Security 2026
▶︎

Attacking AI - Jason Haddix - NDC Security 2026

Important: "laravel-lang" Attack and Composer Security Tips
▶︎

Important: "laravel-lang" Attack and Composer Security Tips

How to Disappear Online and Become Untraceable
▶︎

How to Disappear Online and Become Untraceable

Passkeys Explained: Are They Actually Better Than Passwords?
▶︎

Passkeys Explained: Are They Actually Better Than Passwords?

9 Tips for Shorter Laravel Code
▶︎

9 Tips for Shorter Laravel Code

I Hacked This Temu Router. What I Found Should Be Illegal.
▶︎

I Hacked This Temu Router. What I Found Should Be Illegal.

From Laravel Blade to Vue.js + API [Live-coding Example]
▶︎

From Laravel Blade to Vue.js + API [Live-coding Example]

I am done with Golang
▶︎

I am done with Golang

THESE Apps Are SPYING on You — Shut Them Off NOW!
▶︎

THESE Apps Are SPYING on You — Shut Them Off NOW!

4 Packages You Need in ANY Laravel Project
▶︎

4 Packages You Need in ANY Laravel Project

"Hack ANY Cell Phone" - Hacker Shows How Easy It Is To Hack Your Cell Phone
▶︎

"Hack ANY Cell Phone" - Hacker Shows How Easy It Is To Hack Your Cell Phone

Laravel Junior Code Review: Security and Consistency
▶︎

Laravel Junior Code Review: Security and Consistency

Ultimate Laravel 12 Security Checklist
▶︎

Ultimate Laravel 12 Security Checklist

How to Build a REST API With Laravel: PHP Full Course
▶︎

How to Build a REST API With Laravel: PHP Full Course