Freeform CVEs and Security Vulnerabilities

Filtered by vendor Craftcms Subscriptions

Filtered by product Freeform Subscriptions

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-52122	1 Craftcms	1 Freeform	2025-08-27	9.8 Critical
Freeform 5.0.0 to before 5.10.16, a plugin for CraftCMS, contains an Server-side template injection (SSTI) vulnerability, resulting in arbitrary code injection for all users that have access to editing a form (submission title).

Page 1 of 1.