CVE-2026-32267 | Craft CMS up to 4.17.5/5.9.11 authorization

Inserito da Angelo Barbosa | Mar 16, 2026 | CVE

A vulnerability identified as critical has been detected in Craft CMS up to 4.17.5/5.9.11. The impacted element is an unknown function. This manipulation causes incorrect authorization.

This vulnerability is registered as CVE-2026-32267. Remote exploitation of the attack is possible. No exploit is available.

You should upgrade the affected component.

CVE-2026-32267 | Craft CMS up to 4.17.5/5.9.11 authorization

Post correlati

CVE-2025-57220 | Tenda AC10 16.03.10.09_multi_TDE01 UDP input validation

CVE-2024-6570 | Glossary Plugin up to 2.2.26 on WordPress information disclosure

CVE-2025-11682 | Perx Customer Engagement & Loyalty Platform up to 4.617.3 LMT Dashboard cross site scripting

CVE-2025-13266 | wwwlike vlife up to 2.0.1 VLifeApi SysFileApi.java create fileName path traversal