ByteOS Network

Payload CMS

Source -

CNA

BOS Name -

N/A

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2025-4644

Assigner-CERT.PL

View Details

Assigner-CERT.PL

CVSS Score-5.3||MEDIUM

EPSS-0.04% / 10.40%

7 Day CHG~0.00%

Published-29 Aug, 2025 | 10:01

Updated-29 Aug, 2025 | 16:24

User Session Fixation after Account Removal in PayloadCMS

A Session Fixation vulnerability existed in Payload's SQLite adapter due to identifier reuse during account creation. A malicious attacker could create a new account, save its JSON Web Token (JWT), and then delete the account, which did not invalidate the JWT. As a result, the next newly created user would receive the same identifier, allowing the attacker to reuse the JWT to authenticate and perform actions as that user. This issue has been fixed in version 3.44.0 of Payload.

Vendor-Payload CMS

Product-Payload

CWE ID-CWE-384

Session Fixation

CVE-2025-4643

Assigner-CERT.PL

View Details

Assigner-CERT.PL

CVSS Score-6.3||MEDIUM

EPSS-0.06% / 18.91%

7 Day CHG~0.00%

Published-29 Aug, 2025 | 10:01

Updated-29 Aug, 2025 | 16:24

Lack of JWT Expiration after Log Out in PayloadCMS

Payload uses JSON Web Tokens (JWT) for authentication. After log out JWT is not invalidated, which allows an attacker who has stolen or intercepted token to freely reuse it until expiration date (which is by default set to 2 hours, but can be changed). This issue has been fixed in version 3.44.0 of Payload.

Vendor-Payload CMS

Product-Payload

CWE ID-CWE-613

Insufficient Session Expiration