CVE-2026-32268 | CraftCMS azure-blob up to 2.1.0 actionLoadContainerData authorization (GHSA-q6fm-p73f-x862)

Inserito da Angelo Barbosa | Mar 18, 2026 | CVE

A vulnerability described as problematic has been identified in CraftCMS azure-blob up to 2.1.0. This affects the function actionLoadContainerData. Executing a manipulation can lead to missing authorization.

This vulnerability is handled as CVE-2026-32268. The attack can be executed remotely. There is not any exploit available.

Upgrading the affected component is recommended.

CVE-2026-32268 | CraftCMS azure-blob up to 2.1.0 actionLoadContainerData authorization (GHSA-q6fm-p73f-x862)

Post correlati

CVE-2023-6136 | Bowo Debug Log Manager Plugin up to 2.3.0 on WordPress information disclosure

CVE-2025-21703 | Linux Kernel up to 6.6.77/6.12.13/6.13.2/6.14-rc1 netem qdisc_tree_reduce_backlog use after free

CVE-2024-2029 | mudler localai up to 2.9.x audioToWav os command injection

CVE-2024-31273 | JS Help Desk Plugin up to 2.8.3 on WordPress authorization