Package impact
Packagist / processwire/processwire
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2026-40500 | medium | 6.8 | 6.8 | 1mo ago | ProcessWire: server-side request forgery vulnerability in the admin panel's 'Add Module From URL' feature | |
| CVE-2025-60790 | unknown | — | — | 7mo ago | ProcessWire CMS vulnerable to resource-exhaustion Denial of Service | |
| CVE-2024-41597 | unknown | — | — | 2y ago | ProcessWire Cross Site Request Forgery vulnerability | |
| CVE-2023-24676 | unknown | — | — | 2y ago | Arbitrary Code Execution in Processwire | |
| CVE-2022-40487 | unknown | — | — | 4y ago | ProcessWire vulnerable to Cross-site Scripting | |
| CVE-2022-40488 | unknown | — | — | 4y ago | ProcessWire vulnerable to Cross-Site Request Forgery |