Craft CMS security advisory (AV25-300) – Update 1

Serial number: AV25-300
Date: May 28, 2025
Updated: March 23, 2026

On April 7, 2025, Craft CMS published a security advisory to address a critical vulnerability in the following product:

Craft CMS – versions prior to 9.15, 4.14.15 and 5.6.17

Craft CMS has received reports that CVE-2025‑32432 has been exploited.

Update 1

On March 20, 2026, Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2025‑32432 to their Known Exploited Vulnerabilities (KEV) Database.

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates, when available.

Source link

What's Hot

CISA Adds One Known Exploited Vulnerability to Catalog

Is a $30,000 GPU Good at Password Cracking?

GitLab security advisory (AV26-327) – Canadian Centre for Cyber Security

CISA Adds One Known Exploited Vulnerability to Catalog

GitLab security advisory (AV26-327) – Canadian Centre for Cyber Security

Heap-based buffer overflow in cw_acd daemon

Global Takedown of Massive IoT Botnets Halts Record-Breaking Cyberattacks

Catchy & Intriguing

The Grandparent Scam: How AI Voice Technology Makes This Old Con Deadlier Than Ever

Pico 4 Review: Should You Actually Buy One Instead Of Quest 2?

A Review of the Venus Optics Argus 18mm f/0.95 MFT APO Lens

DJI Avata Review: Immersive FPV Flying For Drone Enthusiasts

Most Popular

Global Takedown of Massive IoT Botnets Halts Record-Breaking Cyberattacks

Catchy & Intriguing

The Grandparent Scam: How AI Voice Technology Makes This Old Con Deadlier Than Ever

Our Picks

CISA Adds One Known Exploited Vulnerability to Catalog

Is a $30,000 GPU Good at Password Cracking?

GitLab security advisory (AV26-327) – Canadian Centre for Cyber Security

Subscribe to Updates

What's Hot

Craft CMS security advisory (AV25-300) – Update 1

Update 1

Related Posts

Subscribe to Updates