Crafty Hackers: New Zero-Day Exploits in Craft CMS Leave 13,000 Sites Vulnerable!

Threat actors are exploiting two critical flaws in Craft CMS, using them to breach servers and gain unauthorized access. These zero-day attacks involve vulnerabilities CVE-2024-58136 and CVE-2025-32432. If your firewall logs show suspicious POST requests, your site might have been probed. Stay vigilant and update your defenses!

3P
Published: April 28, 2025 7:25 amAdded: April 28, 2025 at 12:56 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Oh, Craft CMS! You gave us a platform to build fabulous websites and in return, we gave you… vulnerabilities. But let’s not point fingers, because who hasn’t had a few skeletons in their code closet? These zero-day exploits are like the surprise guests at a party who end up eating all the snacks and spilling your secrets. Time to patch things up and show those threat actors the door!

Key Points:

– Two critical vulnerabilities in Craft CMS are being exploited in zero-day attacks.
– CVE-2024-58136 relates to improper protection in the Yii PHP framework.
– CVE-2025-32432 allows remote code execution via image transformation features.
– Over 13,000 vulnerable Craft CMS instances have been identified, with 300 compromised.
– Mitigation includes rotating credentials, refreshing security keys, and blocking malicious requests.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?