craftcms Summary
Latest vulnerabilities published by craftcms
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Unauthenticated Access in Craft CMS Allows Exploitation of User Activation Process
CVE-2026-29069CraftcmsCms6.9MEDIUMRemote Code Execution Vulnerability in Craft CMS by Craft
CVE-2026-28784CraftcmsCms8.6HIGHRemote Code Execution and File Access Vulnerabilities in Craft CMS
CVE-2026-28783CraftcmsCms9.4CRITICALAccess Control Flaw in Craft CMS Enables Unauthorized Content Duplication
CVE-2026-28782CraftcmsCms5.3MEDIUMMass Assignment Vulnerability in Craft CMS Affects User Authorship Attribution
CVE-2026-28781CraftcmsCms7.1HIGHServer-Side Template Injection in Craft CMS Affects Remote Code Execution
CVE-2026-28697CraftcmsCms9.4CRITICALAuthorization Flaw in Craft CMS Affects Sensitive Data Access
CVE-2026-28696CraftcmsCms8.7HIGHRemote Code Execution Vulnerability in Craft CMS by Craft
CVE-2026-28695CraftcmsCms7.5HIGHBypass in SSRF Validation in Craft CMS Affects Various Versions
CVE-2026-27129CraftcmsCms5.7MEDIUMTime-of-Check-Time-of-Use Race Condition in Craft CMS by Craft
CVE-2026-27128CraftcmsCms6.9MEDIUMDNS Rebinding Vulnerability in Craft CMS Affects Multiple Versions
CVE-2026-27127CraftcmsCms7HIGHStored Cross-site Scripting Vulnerability in Craft CMS
CVE-2026-27126CraftcmsCms5.9MEDIUMRemote Code Execution Vulnerability in Craft CMS by Craft
CVE-2026-25498CraftcmsCms8.6HIGHPrivilege Escalation Vulnerability in Craft CMS GraphQL API by Craft
CVE-2026-25497CraftcmsCms8.6HIGHStored XSS Vulnerability in Craft by Invision Community
CVE-2026-25496CraftcmsCms4.8MEDIUMSQL Injection Vulnerability in Craft Platform by Craft CMS
CVE-2026-25495CraftcmsCms8.7HIGHCraft Platform Vulnerability in Asset Management Functionality
CVE-2026-25494CraftcmsCms6.9MEDIUMServer-Side Request Forgery Vulnerability in Craft CMS by Pixel & Tonic
CVE-2026-25493CraftcmsCms6.9MEDIUMContent Management System Vulnerability in Craft by Pixel & Tonic
CVE-2026-25492CraftcmsCms5.3MEDIUMStored XSS Vulnerability in Craft Platform by Craft CMS
CVE-2026-25491CraftcmsCms1.9LOWDeserialization Vulnerability in CraftCMS vCard Plugin from CraftCMS
CVE-2020-37071CraftcmsCraftcmsπΎπ‘9.3CRITICALStored XSS Vulnerability in Craft Commerce Affects Craft CMS
CVE-2026-25522CraftcmsCommerce6.1MEDIUMStored XSS Vulnerability in Craft Commerce by Craft CMS
CVE-2026-25490CraftcmsCommerce6.1MEDIUMStored XSS Vulnerability in Craft Commerce by Craft CMS
CVE-2026-25489CraftcmsCommerce6.1MEDIUMStored XSS Vulnerability in Craft Commerce Affects Craft CMS
CVE-2026-25488CraftcmsCommerce6.1MEDIUM