AI description
CVE-2025-32432 is a remote code execution (RCE) vulnerability affecting Craft CMS, a content management system. The vulnerability stems from an issue in the Yii PHP framework that Craft CMS utilizes. Specifically, it affects Craft CMS versions 3.0.0-RC1 before 3.9.15, 4.0.0-RC1 before 4.14.15, and 5.0.0-RC1 before 5.6.17. The vulnerability allows attackers to send specially crafted requests, potentially leading to the execution of malicious PHP code on the server. Security researchers have observed attackers chaining CVE-2025-32432 with another vulnerability (CVE-2024-58136) in zero-day attacks to breach servers, install PHP-based file managers, upload backdoors, and exfiltrate sensitive data. Patched versions (3.9.15, 4.14.15, and 5.6.17) have been released to address this issue.
- Description
- Craft is a flexible, user-friendly CMS for creating custom digital experiences on the web and beyond. Starting from version 3.0.0-RC1 to before 3.9.15, 4.0.0-RC1 to before 4.14.15, and 5.0.0-RC1 to before 5.6.17, Craft is vulnerable to remote code execution. This is a high-impact, low-complexity attack vector. This issue has been patched in versions 3.9.15, 4.14.15, and 5.6.17, and is an additional fix for CVE-2023-41892.
- Source
- security-advisories@github.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 10
- Impact score
- 6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
- Severity
- CRITICAL
- security-advisories@github.com
- CWE-94
- nvd@nist.gov
- NVD-CWE-noinfo
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
11
CVE-2025-32432: RCE in CraftCMS, 10.0 rating 🔥🔥🔥 0-day vuln makes some versions of CraftCMS vulnerable to RCE. Used in the wild in combination with CVE-2024-58136. Search at https://t.co/hv7QKSqxTR: 👉 Link: https://t.co/EbJurfzSUw #cybersecurity #vulnerability_map
@Netlas_io
28 Apr 2025
18 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-32432 : CraftCMS Exploit By Chirag Artani https://t.co/sCv4hWrLfS https://t.co/tXzzzaRiWX
@freedomhack101
28 Apr 2025
30 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-32432
@transilienceai
28 Apr 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Two zero-day vulnerabilities in Craft CMS, CVE-2025-32432 (RCE) and CVE-2024-58136 (input validation flaw in Yii framework), were exploited in ongoing attacks to breach servers and steal data. https://t.co/SBiO8qxeX7
@securityRSS
28 Apr 2025
46 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Craft CMSの重大なゼロデイ脆弱性(CVE-2025-32432)が悪用され、約13,000のインスタンスが影響を受け、少なくとも300件の侵害が確認された。攻撃者は画像変換機能を悪用し、認証なしにリモートコードを実行。ユ
@01ra66it
28 Apr 2025
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Craft CMSのゼロデイ脆弱性CVE-2025-32432(CVSSスコア10)に対応するMetasploitモジュールが公表された。Yiiフレームワークにおける入力検証不備CVE-2024-58136と組み合わせるもので、実際に悪用されている組み合わせ。Yi
@__kokumoto
28 Apr 2025
66 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Craft CMS Zero-Day CVE-2025-32432 Exploited with Metasploit Module Now Public https://t.co/rfwXc4iSAs
@the_yellow_fall
28 Apr 2025
533 Impressions
4 Retweets
7 Likes
0 Bookmarks
1 Reply
0 Quotes
🚨Craft CMS zero-day exploit!🚨 CVE-2025-32432 & CVE-2024-58136 chained in attacks to breach servers & steal data. Update to the latest version ASAP! If you suspect compromise, refresh security keys & rotate DB credentials! #Cybersecurity #CraftCMS https://t.co/0
@fernandokarl
27 Apr 2025
73 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2025-43859 2 - CVE-2025-31324 3 - CVE-2024-27876 4 - CVE-2025-32432 5 - CVE-2025-29306 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
27 Apr 2025
15 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨Alert🚨 CVE-2025-32432:Craft CMS Allows Remote Code Execution 🔥EXP : https://t.co/SjQRk5TZLC 📊997.9K+ Services are found on the https://t.co/ysWb28Crld yearly. 🔗Hunter Link:https://t.co/CF2MvxksAI 👇Query HUNTER : https://t.co/q9rtuGgxk7="Craft CMS" FOFA https://
@HunterMapping
27 Apr 2025
2773 Impressions
25 Retweets
51 Likes
16 Bookmarks
0 Replies
0 Quotes
I'm back! 🤘 Just reproduced CVE-2025-32432 and submitted a Metasploit module for it. This one targets Craft CMS RCE in versions 3.x, 4.x, and 5.x < 5.6.17. Check out the PR! 🚀 🔗 https://t.co/nXm7b02p2k https://t.co/2B2cS99udZ
@Chocapikk_
26 Apr 2025
4033 Impressions
22 Retweets
89 Likes
34 Bookmarks
2 Replies
0 Quotes
🚨 Two zero-day vulnerabilities in Craft CMS, CVE-2025-32432 (RCE) & CVE-2024-58136 (input validation), have been exploited in data breaches. Security measures are crucial. #CraftCMS #DataSteal #USA link: https://t.co/IRIOfZ0Qre https://t.co/KWWwThgP0h
@TweetThreatNews
25 Apr 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-32432 Craft is a flexible, user-friendly CMS for creating custom digital experiences on the web and beyond. Starting from version 3.0.0-RC1 to before 3.9.15, 4.0.0-RC1 to b… https://t.co/0nP1i4nmBS
@CVEnew
25 Apr 2025
428 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔴 Craft CMS, Remote Code Execution, #CVE-2025-32432 (Critical) https://t.co/55qC2OWrNb
@dailycve
25 Apr 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:craftcms:craft_cms:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BCB171F0-5C1B-48AE-831E-711510AA3BB9",
"versionEndExcluding": "3.9.15",
"versionStartIncluding": "3.0.0"
},
{
"criteria": "cpe:2.3:a:craftcms:craft_cms:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "502743C7-CDF1-4644-8371-FFB97DE1A4E6",
"versionEndExcluding": "4.14.15",
"versionStartIncluding": "4.0.0"
},
{
"criteria": "cpe:2.3:a:craftcms:craft_cms:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EA89FA02-0C55-47CE-8B8B-4A383F6F2E65",
"versionEndExcluding": "5.6.17",
"versionStartIncluding": "5.0.0"
}
],
"operator": "OR"
}
]
}
]