Craft CMS Zero-Day CVE-2025-32432 Exploited with Metasploit Module Now Public

April 28, 2025

Craft CMS Zero-Day CVE-2025-32432 Exploited with Metasploit Module Now Public

Image: Chocapikk_
Security researcher Chocapikk has published a Metasploit module for a critical zero-day vulnerability impacting Craft CMS, tracked as CVE-2025-32432 (CVSS 10). This remote code execu …

Published Date:
Apr 28, 2025 (2 hours, 14 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-32432

CVE-2024-58136

Source: Read More

Previous Article400+ SAP NetWeaver Devices Vulnerable to 0-Day Attacks that Exploited in the Wild

Next Article CISA Warns of Critical Vulnerabilities in Planet Technology Products

From Data To Decisions: UX Strategies For Real-Time Dashboards

Honeycomb launches AI observability suite for developers

Low-Code vs No-Code Platforms for Node.js: What CTOs Must Know Before Investing

ServiceNow unveils Zurich AI platform

DistroWatch Weekly, Issue 1139

Building personal apps with open source and AI

What Can We Actually Do With corner-shape?

Craft, Clarity, and Care: The Story and Work of Mengchu Yao

Optimizely Mission Control – Part III

Optimizely Mission Control – Part III

Learning from PHP Log to File Example

Online EMI Calculator using PHP – Calculate Loan EMI, Interest, and Amortization Schedule

DistroWatch Weekly, Issue 1139

DistroWatch Weekly, Issue 1139

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

Dmitry — The Deep Magic

Craft CMS Zero-Day CVE-2025-32432 Exploited with Metasploit Module Now Public

Craft CMS Zero-Day CVE-2025-32432 Exploited with Metasploit Module Now Public

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Forget Amazon — Best Buy’s early anti-Prime Day deals are live, with huge savings on some of our favorite tech

CVE-2025-5644 – Radare2 Use After Free Vulnerability in r_cons_flush Function

rwasa is a full-featured high performance web server

Flutter Web Hot Reload Has Landed – No More Refreshes!

“Why abandon your game’s identity?” — A vocal minority is trashing Battlefield 6, but I’m having a blast with the open beta

CVE-2025-5148 – FunAudioLLM InspireMusic Pickle Data Handler Deserialization Vulnerability

Our 20 Recommended Software Development Tools for 2025

OpenAI Launches o3 Pro But What’s New About It?

Craft CMS Zero-Day CVE-2025-32432 Exploited with Metasploit Module Now Public

Craft CMS Zero-Day CVE-2025-32432 Exploited with Metasploit Module Now Public

Related Posts