craftcms Summary
Latest vulnerabilities published by craftcms
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Cross-Site Scripting Vulnerability in Craft CMS by Pixel & Tonic
CVE-2026-33051CraftcmsCms5.3MEDIUMExposure of Sensitive Data in Azure Blob Storage Integration for Craft CMS
CVE-2026-32268CraftcmsAzure-blob8.7HIGHUnauthenticated Access in Craft CMS Google Cloud Storage Plugin
CVE-2026-32266CraftcmsGoogle-cloud2.4LOWUnauthorized Access Vulnerability in Amazon S3 Plugin for Craft CMS
CVE-2026-32265CraftcmsAws-s36.9MEDIUMPrivilege Escalation Vulnerability in Craft CMS by Pixel & Tonic
CVE-2026-32267CraftcmsCms7.7HIGHRemote Code Execution Vulnerability in Craft CMS Administrators
CVE-2026-32264CraftcmsCms8.6HIGHYii2 Behavior Injection in Craft CMS by Pixel & Tonic
CVE-2026-32263CraftcmsCms8.6HIGHPath Traversal Vulnerability in Craft CMS by Craft
CVE-2026-32262CraftcmsCms5.3MEDIUMRemote Code Execution in Craft CMS Plugin by Craft
CVE-2026-32261CraftcmsWebhooks8.5HIGHInsecure Direct Object Reference in Craft Commerce by Craft CMS
CVE-2026-31867CraftcmsCommerce6.3MEDIUMReflected XSS Vulnerability in Craft Content Management System
CVE-2026-31859CraftcmsCms6.9MEDIUMSQL Injection Vulnerability in Craft CMS Affects User Data Access
CVE-2026-31858CraftcmsCms8.7HIGHRemote Code Execution in Craft CMS from Craft
CVE-2026-31857CraftcmsCms8.1HIGHStored Cross-Site Scripting Vulnerability in Craft Commerce by Craft CMS
CVE-2026-29177CraftcmsCommerce1.9LOWStored XSS Vulnerability in Craft Commerce by Craft CMS
CVE-2026-29176CraftcmsCommerce4.8MEDIUMStored XSS Vulnerability in Craft Commerce by Craft CMS
CVE-2026-29175CraftcmsCommerce8.6HIGHSQL Injection Vulnerability in Craft Commerce by Craft CMS
CVE-2026-29174CraftcmsCommerce8.7HIGHStored XSS Vulnerability in Craft Commerce E-commerce Platform
CVE-2026-29173CraftcmsCommerce1.9LOWSQL Injection Vulnerability in Craft Commerce by Craft CMS
CVE-2026-29172CraftcmsCommerce8.7HIGHCSRF Vulnerability in Craft CMS Affects Content Preview Functionality
CVE-2026-29113CraftcmsCms2.3LOWUnauthenticated Access in Craft CMS Allows Exploitation of User Activation Process
CVE-2026-29069CraftcmsCms6.9MEDIUMRemote Code Execution Vulnerability in Craft CMS by Craft
CVE-2026-28784CraftcmsCms8.6HIGHRemote Code Execution and File Access Vulnerabilities in Craft CMS
CVE-2026-28783CraftcmsCms9.4CRITICALAccess Control Flaw in Craft CMS Enables Unauthorized Content Duplication
CVE-2026-28782CraftcmsCms5.3MEDIUMMass Assignment Vulnerability in Craft CMS Affects User Authorship Attribution
CVE-2026-28781CraftcmsCms7.1HIGH