CVE-2026-26720

Published
View on NVD ↗
CVSS v3
9.8
CRITICAL
CVSS v2
N/A
Affected
1
PROJECT

Description

An issue in Twenty CRM v1.15.0 and before allows a remote attacker to execute arbitrary code via the local.driver.ts module.

dillonkirsch/CVE-2026-26720-Twenty-RCE
dillonkirsch/CVE-2026-26720-Twenty-RCE
GitHubGitHub