Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
CISA Flags Craft CMS Vulnerability CVE-2025-23209 Amid Active Attacks
Malware and Vulnerabilities
February 24, 2025
The Hacker News
The flaw is tracked as CVE-2025-23209 and is a high severity (CVSS v3 score: 8.0) code injection (RCE) vulnerability impacting Craft CMS versions 4 and 5. Federal agencies have until March 13, 2025, to patch the Craft CMS flaw.
Read More
CISA
Craft CMS
Code Injection Vulnerability
Remote Code Execution (RCE)
CVE-2025-23209
Publisher
Previous
GhostSocks - Lumma's Partner in Proxy
Malware and Vulnerabilities
Next
PayPal's "New Address" Feature Abused to Send Phishing ...
Identity Theft, Fraud, Scams
/https://cyware-ent.s3.amazonaws.com/image_bank/d90f_shutterstock_1384018715.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_568632904.jpg)
