High severity7.2NVD Advisory· Published Feb 19, 2026· Updated Apr 15, 2026
CVE-2026-25316
CVE-2026-25316
Description
Deserialization of Untrusted Data vulnerability in Brainstorm Force CartFlows cartflows allows Object Injection.This issue affects CartFlows: from n/a through <= 2.1.19.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.