Laravel Lang Compromised with RCE Backdoor Across 700 Versions

A malicious update to the Laravel Lang package (versions 1–12) injected a backdoor enabling remote code execution. The compromise affected over 700 versions, posing a severe supply-chain risk to Laravel applications using the library.