REPRO-2026-00111 HIGH RCE Verified

Formwork CMS Improper Privilege Management in User Creation

getformwork/formwork (composer) Feb 20, 2026

Open in Codespaces Download Script

Confidence HIGH

Reproduced in 12m 42s

Tool calls 119

Affected >= 2.0.0, <= 2.3.3

Fixed in 2.3.4

What's the vulnerability?

Application fails to enforce role-based authorization during account creation. An authenticated user with editor role can create new accounts with administrative privileges, leading to full administrative access and CMS compromise.

Root Cause Analysis

One Command

Verify with pruva-verify

Run the Pruva CLI to automatically fetch and execute the reproduction script.

pruva-verify REPRO-2026-00111

or pruva-verify GHSA-34p4-7w83-35g2

or pruva-verify CVE-2026-27198

Install: curl -fsSL https://pruva.dev/install.sh | sh

Or Run Manually

Download the script

curl -O https://pruva.dev/api/v1/reproductions/REPRO-2026-00111/artifacts/repro/reproduction_steps.sh

Make executable

chmod +x reproduction_steps.sh

Run the script

./reproduction_steps.sh

Run in a VM, container, or disposable environment. This exploits a real vulnerability.

How Pruva Reproduced This

Watch the AI agent's step-by-step process.

Loading session...

Artifacts

repro/rca_report.md6.6 KB

repro/reproduction_steps.sh7.3 KB

bundle/source.json3.9 KB

bundle/ticket.json6.3 KB

bundle/ticket.md1.8 KB

logs/privilege_escalation_poc.txt1.2 KB

logs/variant_analysis.log1.0 KB

logs/vulnerability_details.md1.7 KB

logs/vulnerability_test.log0.3 KB