News

Craft CMS zero-day exploited to compromise hundreds of vulnerable servers
Researchers discovered two critical-severity zero-days in Craft CMS Criminals are allegedly chaining them together to gain ...
The Hacker News8d
Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised
Threat actors exploited Craft CMS zero-days CVE-2025-32432 and CVE-2024-58136, compromising 300 of 13,000 vulnerable servers.
SecurityWeek9d
Craft CMS Zero-Day Exploited to Compromise Hundreds of Websites
Threat actors have exploited a zero-day vulnerability in Craft CMS to execute PHP code on hundreds of websites.