CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

NVD•added 2025/08/27 3:15 p.m.•4 views

CVE-2025-52122

Freeform 5.0.0 to before 5.10.16, a plugin for CraftCMS, contains an Server-side template injection SSTI vulnerability, resulting in arbitrary code injection for all users that have access to editing a form submission title...

9.8CVSS0.00142EPSS

Exploits1References2

Positive Technologies•added 2025/08/27 12:0 a.m.•5 views

PT-2025-34870 · Craft Cms · Craft Cms +1

Name of the Vulnerable Software and Affected Versions: Freeform versions 5.0.0 through 5.10.16 Description: The Freeform plugin for CraftCMS contains a Server-side template injection SSTI vulnerability. This allows for arbitrary code injection for users with permission to edit a form submission...

9.8CVSS7.2AI score0.00142EPSS

Exploits1References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by