← Back to Search

Craft CMS

2025-06-02 · Severity 5/10 — Medium · Unknown
Incident Summary

Craft CMS contains an external control of assumed-immutable web parameter vulnerability. This vulnerability could allow an unauthenticated client to introduce arbitrary values, such as PHP code, to a

Sources
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Details
Records Affected
Unknown
Industry
Technology
Headquarters
Date Reported
2025-06-02
Related Breaches
Craft CMS
2026-03-20 · Severity 7 · Vulnerability