HIGHCVE-2026-25615Published Modified CNA mitre
CVE-2026-25615: Blesta 3
Blesta 3.x through 5.x before 5.13.3 allows object injection, aka CORE-5668.
Metrics
- CVSS v3.1
- 7.2
- Severity
- HIGH
- Fixed in
- 5.13.3
- Affected Products
- 1
Fix available
5.13.3
Affected packages
- Blesta / Blesta< 5.13.3 (from 3.0.0)
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HReferences