getformwork/formwork vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-27198Highgetformwork/formwork: Formwork Improperly Managed Privileges in User creationCVE-2025-65956Mediumgetformwork/formwork: Formwork CMS has Stored Cross-Site Scripting Vulnerebility in Blog TagsGHSA-C85W-X26Q-CH87Highgetformwork/formwork: Formwork improperly validates input of User role preventing site and panel availabilityGHSA-VF6X-59HH-332FMediumgetformwork/formwork: Formwork has a cross-site scripting (XSS) vulnerability in Site titleCVE-2024-37160Mediumgetformwork/formwork: Cross-site scripting (XSS) vulnerability in Description metadataCVE-2024-35621Mediumgetformwork/formwork: formwork Cross-site scripting vulnerability in Markdown fieldsCVE-2023-24230Mediumgetformwork/formwork: Formwork Cross-site Scripting (XSS) from Page title field

Stop the waste.
Protect your environment with Kodem.