Fuelthemes Werkstatt
4 CVEs affecting Fuelthemes Werkstatt. Latest disclosed: 2026-07-02. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-27414 | High | 8.8 | 2026-07-02 | Contributor PHP Object Injection in Werkstatt <= 4.8.3 versions. |
CVE-2025-69314 | High | 8.1 | 2026-01-22 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in fuelthemes Werkstatt werkstatt allows… |
CVE-2026-57690 | Medium | 4.3 | 2026-07-02 | Unauthenticated Cross Site Request Forgery (CSRF) in Werkstatt <= 4.7.2 versions. |
CVE-2026-57689 | Medium | 4.3 | 2026-07-02 | Subscriber Broken Access Control in Werkstatt <= 4.7.2 versions. |