Craft CMS in the Media
5 mentions across press, blogs, and newsletters
March 2026
WebProNews
A Single Flaw in Craft CMS Has Federal Agencies Scrambling — and the Rest of Us Should Be Watching
CISA has added a critical Craft CMS vulnerability — CVE-2025-53521, rated 9.8 — to its Known Exploited Vulnerabilities catalog after confirmed active exploitation. Federal agencies
Mar 29, 2026
GBHackers
CISA Warns of Craft CMS Code Injection Flaw Exploited in Active Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical vulnerability affecting Craft CMS to its Known Exploited Vulnerabilities (KEV) catalog. Tracked as CVE-2025-32432, this code injection flaw is currently being exploited in active attacks across the wild. O
Mar 23, 2026
Security Affairs
U.S. CISA adds Apple, Laravel Livewire and Craft CMS flaws to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apple, Laravel Livewire and Craft CMS flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Apple, Laravel Livewire and Craft CMS flaws to its Known Exploited Vuln
Mar 22, 2026
WebProNews
The Federal Government’s Patch-or-Perish Ultimatum: Inside CISA’s Latest Emergency Directive on Apple, Craft CMS, and Laravel Vulnerabilities
CISA added critical Apple WebKit, Craft CMS, and Laravel vulnerabilities to its Known Exploited Vulnerabilities catalog, mandating federal agencies patch by April 3, 2025. All three
Mar 22, 2026
The Hacker News
CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added five security flaws impacting Apple, Craft CMS, and Laravel Livewire to its Known Exploited Vulnerabilities (KEV) catalog, urging federal agencies to patch them by April 3, 2026. The vulnerabilities that have come under
Mar 21, 2026