EXECUTIVE SUMMARY:
Multiple security vulnerabilities have been identified in Craft CMS (composer/craftcms/cms) affecting versions 5.9.0 through 5.9.22, 5.0.0‑RC1 through 5.9.22, and earlier 4.x releases up to 4.17.15. The issues span remote code execution, stored cross‑site scripting, DOM‑based XSS, and sensitive file disclosure. An authenticated attacker can execute arbitrary Twig code via the Referrer header, while lower‑privilege users can inject malicious JavaScript into entry titles or GitHub issue titles that run in admin sessions. Additionally, privileged utility users can read arbitrary files, including the .env file, exposing credentials. Exploitation could lead to full system compromise, data theft, and unauthorized administrative actions.[/subscribe_to_unlock_form]
EXECUTIVE SUMMARY:
Multiple security vulnerabilities have been identified in Craft CMS (composer/craftcms/cms) affecting versions 5.9.0 through 5.9.22, 5.0.0‑RC1 through 5.9.22, and earlier 4.x releases up to 4.17.15. The issues span remote code execution, stored cross‑site scripting, DOM‑based XSS, and sensitive file disclosure. An authenticated attacker can execute arbitrary Twig code via the Referrer header, while lower‑privilege users can inject malicious JavaScript into entry titles or GitHub issue titles that run in admin sessions. Additionally, privileged utility users can read arbitrary files, including the .env file, exposing credentials. Exploitation could lead to full system compromise, data theft, and unauthorized administrative actions.[emaillocker id="1283"]
These vulnerabilities collectively provide attackers with avenues to execute code, steal confidential files, and hijack administrator sessions across Craft CMS installations. Because exploitation can be achieved with minimal privileges and may lead to full system takeover and data breach, rapid assessment and remediation are essential to protect business continuity and customer trust.
RECOMMENDATION:
REFERENCES:
The following reports contain further technical details:
https://github.com/advisories/GHSA-f74w-488g-8x5r
https://github.com/advisories/GHSA-xrqc-p465-2xvg
https://github.com/advisories/GHSA-287w-mxq6-x2cp
https://github.com/advisories/GHSA-24x4-j6x9-rfw5