High severity7.3NVD Advisory· Published May 27, 2026· Updated May 27, 2026
CVE-2026-31266
CVE-2026-31266
Description
Craft CMS 5.9.5 and earlier contains a Missing Authorization vulnerability in the migrate endpoint (/actions/app/migrate).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.