CVE-2026-28782 Overview Field Details Software Craft CMS Vendor Craft CVE ID CVE-2026-28782 Severity Medium CVSS Score 4.3 Vulnerable Versions < 4.17.0, < 5.9.0 Patched Version 5.9.0 References NIST NVD Entry Patch / Fix PoC / Exploit