PKSA-9z7r-2kcf-76cf Security Advisory
-
[HIGH] Craft CMS Vulnerable to Unauthorized Deletion of Destination Folders During Forced Moves
PKSA-9z7r-2kcf-76cf CVE-2026-50282 GHSA-3w32-23wj-rxg3
Affected package: craftcms/cms
Affected version: >=4.0.0-RC1,<4.17.14|>=5.0.0-RC1,<5.9.21
Reported by:
GitHub