PKSA-hvdm-8k9p-kcdw Security Advisory
-
[HIGH] Craft CMS: Potential authenticated Remote Code Execution via referrer redirect
PKSA-hvdm-8k9p-kcdw CVE-2026-55794 GHSA-f74w-488g-8x5r
Affected package: craftcms/cms
Affected version: >=5.9.0,<5.10.0
Reported by:
GitHub