CNNVD-202602-084 Information
Feb 02, 2026
cve
CNNVD ID
CNNVD-202602-084
Related CVE
- CNNVD Published: 2026-02-02
Description (Chinese)
CrafterCMS是CrafterCMS公司的一个基于 Java 的 CMS。 CrafterCMS存在安全漏洞,该漏洞源于对动态管理代码资源的控制不当,可能导致经过身份验证的开发人员绕过沙箱限制并执行OS命令。
Description (English)
CrafterCMS is a Java-based CMS of CrafterCMS. There is a security gap in CrafterCMS, which stems from inadequate control over dynamic management code resources and may lead to identified developers circumventing sandbox restrictions and enforcing OS orders.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
CrafterCMS
Published
2026-02-02
Last Modified
2026-02-24
References
https://docs.craftercms.org/current/security/advisory.html#cv-2026020201
Patch
https://craftercms.com/docs/current/security/advisory.html#cv-2026020201
Share on: