CVE-2026-1770 - Improper Control of Dynamically-Managed Code Resources in Crafter Studio

byMaloy Roy Orko -February 02, 2026

CVE ID : CVE-2026-1770
Published : Feb. 2, 2026, 5:16 p.m. | 34 minutes ago
Description : Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via Groovy Sandbox Bypass. By inserting malicious Groovy elements, an attacker may bypass sandbox restrictions and obtain RCE (Remote Code Execution).
Severity: 4.5 | MEDIUM

Tags Latest Vulnerabilities

CVE-2026-1770 - Improper Control of Dynamically-Managed Code Resources in Crafter Studio

Post a Comment

Swiftbuy V 1.0 | /login.php - No Limit To Authentication Attempts To Admin Login

Categories

Main Tags

Contact Form

Latest Posts

Popular Posts

Swiftbuy V 1.0 | /login.php - No Limit To Authentication Attempts To Admin Login

(CVE-2024-13205,CVE-2024-13204)-SQL-Injection-To-XSS-In-Ecommerce-PHP-kurniaramadhan-1.0

CVE-2025-0842 | Library-Card-System | SQL Injection Admin Login Bypass In admin.php | Found By Maloy Roy Orko

Contact Form