CVE-2026-31266 PUBLISHED

Assigner: mitre
Reserved: 09.03.2026 Published: 27.05.2026 Updated: 27.05.2026

Craft CMS 5.9.5 and earlier contains a Missing Authorization vulnerability in the migrate endpoint (/actions/app/migrate).

Product Status

Vendor n/a
Product n/a
Versions
  • Version n/a is affected

References

Problem Types

  • n/a text