CVE-2025-46731
Craft CMS Contains a Potential Remote Code Execution Vulnerability via Twig SSTI
Severity Score
7.3
*CVSS v4
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Attend
*SSVC
Descriptions
Craft is a content management system. Versions of Craft CMS on the 4.x branch prior to 4.14.13 and on the 5.x branch prior to 5.6.16 contains a potential remote code execution vulnerability via Twig SSTI. One must have administrator access and `ALLOW_ADMIN_CHANGES` must be enabled for this to work. Users should update to the patched versions 4.14.13 or 5.6.15 to mitigate the issue.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
System
Vulnerable | Subsequent
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Attend
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2025-04-28 CVE Reserved
- 2025-05-05 CVE Published
- 2025-05-05 CVE Updated
- 2025-05-06 First Exploit
- 2025-07-12 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-1336: Improper Neutralization of Special Elements Used in a Template Engine
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| https://github.com/craftcms/cms/security/advisories/GHSA-7c58-g782-9j38 | X_refsource_confirm | |
| https://github.com/craftcms/cms/security/advisories/GHSA-f3cw-hg6r-chfv | X_refsource_misc | |
| https://craftcms.com/knowledge-base/securing-craft#set-allowAdminChanges-to-false-in-production | X_refsource_misc | |
| http://github.com/craftcms/cms/pull/17026 | X_refsource_misc |
| URL | Date | SRC |
|---|---|---|
| https://github.com/singetu0096/CVE-2025-46731 | 2025-05-06 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Craftcms Search vendor "Craftcms" | Cms Search vendor "Craftcms" for product "Cms" | >= 4.0.0 < 4.14.13 Search vendor "Craftcms" for product "Cms" and version " >= 4.0.0 < 4.14.13" | en |
Affected
| ||||||
| Craftcms Search vendor "Craftcms" | Cms Search vendor "Craftcms" for product "Cms" | >= 5.0.0 < 5.6.15 Search vendor "Craftcms" for product "Cms" and version " >= 5.0.0 < 5.6.15" | en |
Affected
| ||||||