Craft Cms
by Craftcms
Standard maintenance is sufficient
Craft Cms has low exploitation rates. Attackers rarely target this software's known vulnerabilities.
What to do
- Keep automatic updates enabled
- No urgent action needed
- Review periodically as part of normal maintenance
What Attackers Target
Vulnerabilities with high exploit probability
10.3%
Confirmed actively exploited (CISA)
4.1%
Public exploit code available
0.0%
Based on 97 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2020-9757 | 9.8 | 94.3% | — |
| CVE-2024-56145 | 9.8 | 94.0% | Yes |
| CVE-2023-41892 | 10.0 | 93.9% | — |
| CVE-2024-37843 | 9.8 | 89.4% | — |
| CVE-2025-32432 | 10.0 | 88.4% | Yes |
| CVE-2025-35939 | 5.3 | 33.1% | Yes |
| CVE-2023-32679 | 7.2 | 25.5% | — |
| CVE-2024-52293 | 7.2 | 22.0% | — |
| CVE-2025-23209 | 8.0 | 18.0% | Yes |
| CVE-2019-14280 | 5.3 | 15.9% | — |
| CVE-2023-30179 | 7.2 | 5.5% | — |
| CVE-2023-30130 | 8.8 | 5.0% | — |
| CVE-2021-27903 | 9.8 | 3.8% | — |
| CVE-2023-23927 | 6.1 | 2.7% | — |
| CVE-2022-29933 | 8.8 | 2.3% | — |
| CVE-2019-9554 | 6.1 | 1.5% | — |
| CVE-2022-37783 | 7.5 | 1.4% | — |
| CVE-2025-68455 | 7.2 | 1.2% | — |
| CVE-2025-46731 | 7.2 | 0.9% | — |
| CVE-2017-9516 | 5.4 | 0.8% | — |
13
/ 100
low-risk
Active Threat
11/50 · Low
Exploit Availability
2/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.