Attackers Exploit Craft CMS Vulnerabilities to Compromise Servers and Steal Data

Orange Cyberdefense's CSIRT reported that attackers have exploited two vulnerabilities in Craft CMS to compromise servers and steal data. Orange's experts discovered these flaws while investigating a server compromise. The two vulnerabilities, referenced as CVE-2025-32432 and CVE-2024-58136, were used in a chain by the attackers. These attacks allowed threats to penetrate systems and exfiltrate sensitive information.