Vulnerability CVE-2023-26020
Published: 2023-02-17

Description:
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Crafter Studio on Linux, MacOS, Windows, x86, ARM, 64 bit allows SQL Injection.This issue affects CrafterCMS v4.0 from 4.0.0 through 4.0.1, and v3.1 from 3.1.0 through 3.1.26.

 References:
https://docs.craftercms.org/en/4.0/security/advisory.html#cv-2023021701
Copyright 2026, cxsecurity.com

 

Back to Top