Lucene search
+L

6 matches found

redhatcve
redhatcve
added 2026/03/26 2:59 p.m.3 views

CVE-2026-31858

Craft is a content management system CMS. The ElementSearchController::actionSearch endpoint is missing the unset protection that was added to ElementIndexesController in CVE-2026-25495. The exact same SQL injection vulnerability including criteriaorderBy, the original advisory vector works on th...

8.8CVSS6AI score0.00502EPSS
Exploits1References1
veracode
veracode
added 2026/03/14 5:24 a.m.6 views

SQL Injection

Craft CMS is vulnerable to a SQL Injection. The vulnerability is due to missing input sanitization in the ElementSearchController::actionSearch endpoint, which allows an attacker to inject malicious SQL queries via parameters like criteriawhere or criteriaorderBy and extract sensitive database...

8.8CVSS5.9AI score0.0035EPSS
Exploits0References3Affected Software1
veracode
veracode
added 2026/03/14 5:22 a.m.6 views

SQL Injection

Craft CMS is vulnerable to SQL Injection. The vulnerability is due to missing input sanitization in the ElementSearchController::actionSearch endpoint, which allows an attacker to inject malicious SQL queries via parameters like criteriawhere or criteriaorderBy and extract sensitive database...

8.8CVSS5.9AI score0.0035EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2026/03/11 5:35 p.m.3 views

CVE-2026-31858 CraftCMS's `ElementSearchController` Affected by Blind SQL Injection

Craft is a content management system CMS. The ElementSearchController::actionSearch endpoint is missing the unset protection that was added to ElementIndexesController in CVE-2026-25495. The exact same SQL injection vulnerability including criteriaorderBy, the original advisory vector works on th...

8.7CVSS6AI score0.0035EPSS
Exploits0References2
snyk
snyk
added 2026/03/11 12:27 a.m.3 views

SQL Injection

Overview craftcms/cms is a content management system. Affected versions of this package are vulnerable to SQL Injection via the actionSearch process in ElementSearchController. An attacker can execute arbitrary SQL commands and extract database contents by injecting malicious input into...

8.8CVSS6.2AI score0.0035EPSS
Exploits0References2
github
github
added 2026/03/11 12:27 a.m.6 views

CraftCMS's `ElementSearchController` Affected by Blind SQL Injection

The ElementSearchController::actionSearch endpoint is missing the unset protection that was added to ElementIndexesController in GHSA-2453-mppf-46cj. The exact same SQL injection vulnerability including criteriaorderBy, the original advisory vector works on this controller because the fix was nev...

8.8CVSS6AI score0.0035EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder