1.0 Introduction
Recently Craft CMS has identified a high-severity vulnerability that allows remote attackers to execute malicious code on affected installations.
2.0 Impact
The vulnerability
(CVE-2025-23209)
allows attackers to execute remote code on affected systems when the security key is compromised. Attackers can potentially gain unauthorized access and control over affected systems, leading to data breaches, system compromise, or further network infiltration.
3.0 Affected Products
Craft CMS
- Version 4.0.0-RCI through 4.13.7
- Version 5.0.0-RCI through 5.5.4
4.0 Recommendations
CyberSecurity Malaysia encourages users and administrators to review the
Craft CMS Security Bulletin
and apply the necessary updates.
Kindly refer to the following URLs for more information:
- https://craftcms.com/knowledge-base/securing-craft#keep-your-secrets-secret
- https://github.com/craftcms/cms/security/advisories/GHSA-x684-96hh-833x
- https://github.com/craftcms/cms/commit/e59e22b30c9dd39e5e2c7fe02c147bcbd004e603
Generally, we advise the users to be updated with the latest security announcements by the vendor and follow best practice security policies to determine which updates should be applied.
For further enquiries, please contact the Cyber999 Incident Response Team through the following channels:
E-mail: cyber999[at]cybersecurity.my
Phone: 1-300-88-2999 (monitored during business hours)
Mobile: +60 19 2665850 (24x7 call incident reporting)
Business Hours: Mon - Fri 08:30 -17:30 MYT
Web:
https://www.mycert.org.my
5.0 References