Description

Payload is a free and open source headless content management system. Prior to 3.74.0, a cross-collection Insecure Direct Object Reference (IDOR) vulnerability exists in the payload-preferences internal collection. In multi-auth collection environments using Postgres or SQLite with default serial/auto-increment IDs, authenticated users from one auth collection can read and delete preferences belonging to users in different auth collections when their numeric IDs collide. This vulnerability has been patched in v3.74.0.

INFO

Published Date :

2026-02-06T21:04:48.036Z

Last Modified :

2026-02-09T15:27:32.333Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-25574 vulnerability.

Vendors Products
Payloadcms
  • Payload
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-25574.

URL Resource
https://github.com/payloadcms/payload/security/advisories/GHSA-jq29-r496-r955 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact