CVE-2025-32432: Craft CMS Code Injection Vulnerability

Craft CMS contains a code injection vulnerability that allows a remote attacker to execute arbitrary code. This vulnerability affects Craft CMS Craft CMS and has been added to CISA's Known Exploited Vulnerabilities catalog on 2026-03-20, indicating active exploitation in the wild. Organizations should prioritize patching this vulnerability immediately. Mitigation: Apply vendor patches as soon as available, implement network segmentation, and monitor for suspicious activity.