Description
Connect-CMS is a content management system. In versions on the 1.x series up to and including 1.41.0 and versions on the 2.x series up to and including 2.41.0, an authenticated user may be able to execute arbitrary code in the Code Study Plugin. Versions 1.41.1 and 2.41.1 contain a patch.
Published: 2026-03-23
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Arbitrary Code Execution
Action: Immediate Patch
AI Analysis

Impact

The vulnerability allows authenticated users to inject and execute arbitrary PHP code through the Code Study Plugin. An attacker can compromise the integrity, confidentiality, and availability of the entire CMS installation. The flaw is a code injection weakness as described by CWE‑94.

Affected Systems

OpenSource Workshop Connect‑CMS versions 1.0 through 1.41.0 and 2.0 through 2.41.0 are affected. The Code Study Plugin contains the vulnerable code. Versions 1.41.1 and 2.41.1 contain the fix that removes the exploit path.

Risk and Exploitability

The CVSS score of 8.8 classifies the weakness as high severity, while the EPSS < 1% suggests current exploit prevalence is low and it is not listed in the KEV catalog. Exploitation requires an authenticated session, after which an attacker can place and run arbitrary code, fully compromising the affected server. The risk remains high for installations that enable the plugin and allow authenticated write access.

Generated by OpenCVE AI on March 24, 2026 at 21:55 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Connect‑CMS to v1.41.1 or v2.41.1
  • Verify that the Code Study Plugin is updated and no legacy files remain
  • Disable or uninstall the Code Study Plugin if it is not required
  • Revoke or limit authentication accounts that no longer need access

Generated by OpenCVE AI on March 24, 2026 at 21:55 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-hxqw-6qv7-cqfv Connect-CMS has Arbitrary Code Execution by an Authenticated User in its Code Study Plugin
History

Tue, 24 Mar 2026 20:00:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:opensource-workshop:connect-cms:*:*:*:*:*:*:*:*

Tue, 24 Mar 2026 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 24 Mar 2026 10:45:00 +0000

Type Values Removed Values Added
First Time appeared Opensource-workshop
Opensource-workshop connect-cms
Vendors & Products Opensource-workshop
Opensource-workshop connect-cms

Tue, 24 Mar 2026 02:30:00 +0000

Type Values Removed Values Added
Description Connect-CMS is a content management system. In versions on the 1.x series up to and including 1.41.0 and versions on the 2.x series up to and including 2.41.0, an authenticated user may be able to execute arbitrary code in the Code Study Plugin. Versions 1.41.1 and 2.41.1 contain a patch.
Title Connect-CMS has Arbitrary Code Execution by an Authenticated User in its Code Study Plugin
Weaknesses CWE-94
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Opensource-workshop Connect-cms
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-03-24T15:13:12.123Z

Reserved: 2026-03-11T15:05:48.400Z

Link: CVE-2026-32276

cve-icon Vulnrichment

Updated: 2026-03-24T14:30:18.387Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-23T22:16:27.050

Modified: 2026-03-24T19:58:16.700

Link: CVE-2026-32276

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-25T20:36:29Z

Weaknesses