Known Vulnerabilities for Strapi by Vendor
Listed below are 5 of the newest known vulnerabilities associated with "Strapi" by "Vendor".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-27886 json | Strapi is an open source headless content management system. Strapi versions starting in 4.0.0 and prior to 5.37.0 did not su... | Not Provided | 2026-05-14 | 2026-05-14 |
| CVE-2026-22707 json | Strapi is an open source headless content management system. In Strapi versions prior to 5.33.3, the Upload plugin's Content ... | Not Provided | 2026-05-14 | 2026-05-14 |
| CVE-2026-22706 json | Strapi is an open source headless content management system. In Strapi versions prior to 5.33.3, changing or resetting a user... | Not Provided | 2026-05-14 | 2026-05-14 |
| CVE-2026-22599 json | Strapi is an open source headless content management system. In versions on the 4.x branch prior to 4.26.1 and on the 5.x bra... | Not Provided | 2026-05-14 | 2026-05-14 |
| CVE-2025-64526 json | Strapi is an open source headless content management system. In Strapi versions prior to 5.45.0, the rate-limit middleware in... | Not Provided | 2026-05-14 | 2026-05-14 |