THREAT OPS › CVEs › CVE-2024-56145
CVE-2024-56145 — Craft CMS Code Injection Vulnerability
Craft CMS contains a code injection vulnerability. Users with affected versions are vulnerable to remote code execution if their php.ini configuration has `register_argc_argv` enabled.
Vulnerability details
- Affected productsCraft CMS
- KEV remediation due2025-06-23