CVE-2022-40635

MEDIUM

Crafter CMS 3.1.0-3.1.22 - Authenticated Remote Code Execution via Groovy Sandbox Bypass

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-40635. PoCs published by mbadanoiu.

AI-analyzed exploit summary This repository provides a writeup and reference to a PDF detailing a Groovy Sandbox Bypass vulnerability in CrafterCMS (CVE-2022-40635), allowing authenticated developers to execute OS commands. The actual exploit code is not included in the repository.

Description

Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via Groovy Sandbox Bypass.

Exploits (1)

nomisec WRITEUP 2 stars

by mbadanoiu · poc

https://github.com/mbadanoiu/CVE-2022-40635

View Code ZIP pw:eip

This repository provides a writeup and reference to a PDF detailing a Groovy Sandbox Bypass vulnerability in CrafterCMS (CVE-2022-40635), allowing authenticated developers to execute OS commands. The actual exploit code is not included in the repository.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: CrafterCMS (Crafter Studio)

Auth required

Prerequisites: Valid user credentials · Access to CrafterCMS instance

MITRE ATT&CK

T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://docs.craftercms.org/en/3.1/security/advisory.html#cv-2022051602

Scores

CVSS v3 6.4

EPSS 0.1299

EPSS Percentile 94.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-913

Status published

Products (2)

craftercms/crafter_cms 3.1.0 - 3.1.23

org.craftercms/craftercms 3.1.0 - 3.1.23Maven

Published Sep 13, 2022

Tracked Since Feb 18, 2026