CVE-2026-29174

HIGH SEVERITY

CVSS Score & Metrics

Base Score

8.8 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H                                    

Vulnerability Description

Craft Commerce is an ecommerce platform for Craft CMS. Prior to 5.5.3, Craft Commerce is vulnerable to SQL Injection in the inventory levels table data endpoint. The sort[0][direction] and sort[0][sortField] parameters are concatenated directly into an addOrderBy() clause without any validation or sanitization. An authenticated attacker with access to the Commerce Inventory section can inject arbitrary SQL queries, potentially leading to a full database compromise. This vulnerability is fixed in 5.5.3.

Vulnerability Details

Published Date

March 10, 2026

Last Modified

March 11, 2026

CWE ID

CWE-89

Source

GitHub

Vendor

composer

Product

craftcms/commerce

External References

https://github.com/craftcms/commerce/security/advisories/GHSA-pmgj-gmm4-jh6j
https://github.com/craftcms/commerce/commit/094d69df24b925544f337c38e2ec1effcd5395c7
https://github.com/craftcms/commerce/commit/a2ea853935ef03297ea1298bdb0d8c55ec5daf7b
https://github.com/advisories/GHSA-pmgj-gmm4-jh6j

CVE-2026-29174

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment