craftcms Latest Vulnerabilities
Latest vulnerabilities published by craftcms
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Authenticated Path Traversal Vulnerability in Craft CMS by Pixel & Tonic
CVE-2026-56394CraftcmsCms7.1HIGHStored Cross-Site Scripting Vulnerabilities in Craft CMS by Pixel & Tonic
CVE-2026-56393CraftcmsCms4.6MEDIUMAuthorization Bypass Vulnerability in Craft CMS by Craft
CVE-2026-56385CraftcmsCms5.3MEDIUMMissing Authorization Vulnerability in Craft CMS
CVE-2026-56384CraftcmsCms5.3MEDIUMStored Cross-Site Scripting in Craft CMS Editable Table Component
CVE-2026-56383CraftcmsCms4.6MEDIUMRemote Code Execution Vulnerability in Craft CMS by Craft
CVE-2026-56382CraftcmsCms8.6HIGHStored Cross-Site Scripting Vulnerability in Craft CMS by Craft
CVE-2026-56381CraftcmsCms4.6MEDIUMInput Handling Flaw in Craft CMS Leads to Potential Command Injection
CVE-2026-44011CraftcmsCms8.6HIGHInformation Disclosure in Craft CMS by Craft
CVE-2026-44012CraftcmsCms7.1HIGHGraphQL Address Element Vulnerability in Craft CMS
CVE-2026-44010CraftcmsCms7.1HIGHServer-Side Request Forgery Vulnerability in Craft CMS by Pixel & Tonic
CVE-2026-41130CraftcmsCms5.5MEDIUMServer-Side Request Forgery Vulnerability in Craft CMS Versions 4.x and 5.x
CVE-2026-41129CraftcmsCms5.5MEDIUMPermission Vulnerability in Craft CMS 5.6.0 to 5.9.14
CVE-2026-41128CraftcmsCms5.3MEDIUMSQL Injection Vulnerability in Craft Commerce by Craft CMS
CVE-2026-32272CraftcmsCommerce8.7HIGHSQL Injection Vulnerability in Craft Commerce E-commerce Platform by Craft CMS
CVE-2026-32271CraftcmsCommerce7.7HIGHEcommerce Platform Vulnerability in Craft Commerce by Craft CMS
CVE-2026-32270CraftcmsCommerce1.7LOWUnauthorized Entry Movement in Craft CMS by Vendor Craft
CVE-2026-33162CraftcmsCms4.9MEDIUMContent Management System Vulnerability in Craft CMS
CVE-2026-33161CraftcmsCms1.3LOWUnauthenticated Access Vulnerability in Craft CMS Versions
CVE-2026-33160CraftcmsCms2.7LOWUnauthenticated Access Vulnerability in Craft CMS by Pixel & Tonic
CVE-2026-33159CraftcmsCms6.9MEDIUMUnauthorized Disclosure Vulnerability in Craft CMS by Pixel & Tonic
CVE-2026-33158CraftcmsCms4.9MEDIUMRemote Code Execution Vulnerability in Craft CMS by Craft
CVE-2026-33157CraftcmsCms8.6HIGHCross-Site Scripting Vulnerability in Craft CMS by Pixel & Tonic
CVE-2026-33051CraftcmsCms5.3MEDIUMExposure of Sensitive Data in Azure Blob Storage Integration for Craft CMS
CVE-2026-32268CraftcmsAzure-blob8.7HIGHUnauthenticated Access in Craft CMS Google Cloud Storage Plugin
CVE-2026-32266CraftcmsGoogle-cloud2.4LOW