Share:

CVE-2021-23262 - Craftercms Crafter CMS

December 2, 2021

Critical 7.2

Authenticated administrators may modify the main YAML configuration file and load a Java class resulting in RCE.

Affected software

Craftercms Crafter CMS

Reference links

https://docs.craftercms.org/en/3.1/security/advisory.html#cv-2021120105

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.