CVE-2026-27591CRITICAL 9.9EPSS p38.0%

CVE-2026-27591CVE-2026-27591

Description

Winter is a free, open-source content management system (CMS) based on the Laravel PHP framework. Prior to 1.0.477, 1.1.12, and 1.2.12, Winter CMS allowed authenticated backend users to escalate their accounts level of access to the system by modifying the roles / permissions assigned to their account through specially crafted requests to the backend while logged in. To actively exploit this security issue, an attacker would need access to the Backend with a user account with any level of access. This vulnerability is fixed in 1.0.477, 1.1.12, and 1.2.12.

Scoring

CVSS 3.19.9 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS0.49% probability of exploitation · percentile 38.0% · 2026-06-19T12:03:05Z
Published2026-03-11
Last modified2026-03-19

Underlying weaknesses· 3

CWE-284CWE-639CWE-915

References

  1. https://github.com/wintercms/winter/security/advisories/GHSA-pgpf-m8m4-6cg6
  2. https://wintercms.com/releases/v1.0.477
  3. https://wintercms.com/releases/v1.1.12
  4. https://wintercms.com/releases/v1.2.12

3

TypeTargetConfidenceTier
WeaknessImproper Access Controlcwe-2840%live
WeaknessAuthorization Bypass Through User-Controlled Keycwe-6390%live
WeaknessImproperly Controlled Modification of Dynamically-Determined Object Attributescwe-9150%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-50904
CVE
CVE-2026-1994
CVE
CVE-2026-42843
CVE
CVE-2025-70866
CVE
CVE-2025-2563
CVE
CVE-2025-57130
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.