The SentinelOne Annual Threat Report - A Defenders Guide from the FrontlinesThe SentinelOne Annual Threat ReportGet the Report
Experiencing a Breach?Blog
Get StartedContact Us
SentinelOne
  • Platform
    Platform Overview
    • Singularity Platform
      Welcome to Integrated Enterprise Security
    • AI for Security
      Leading the Way in AI-Powered Security Solutions
    • Securing AI
      Accelerate AI Adoption with Secure AI Tools, Apps, and Agents.
    • How It Works
      The Singularity XDR Difference
    • Singularity Marketplace
      One-Click Integrations to Unlock the Power of XDR
    • Pricing & Packaging
      Comparisons and Guidance at a Glance
    Data & AI
    • Purple AI
      Accelerate SecOps with Generative AI
    • Singularity Hyperautomation
      Easily Automate Security Processes
    • AI-SIEM
      The AI SIEM for the Autonomous SOC
    • Singularity Data Lake
      AI-Powered, Unified Data Lake
    • Singularity Data Lake for Log Analytics
      Seamlessly Ingest Data from On-Prem, Cloud or Hybrid Environments
    Endpoint Security
    • Singularity Endpoint
      Autonomous Prevention, Detection, and Response
    • Singularity XDR
      Native & Open Protection, Detection, and Response
    • Singularity RemoteOps Forensics
      Orchestrate Forensics at Scale
    • Singularity Threat Intelligence
      Comprehensive Adversary Intelligence
    • Singularity Vulnerability Management
      Application & OS Vulnerability Management
    • Singularity Identity
      Identity Threat Detection and Response
    Cloud Security
    • Singularity Cloud Security
      Block Attacks with an AI-Powered CNAPP
    • Singularity Cloud Native Security
      Secure Cloud and Development Resources
    • Singularity Cloud Workload Security
      Real-Time Cloud Workload Protection Platform
    • Singularity Cloud Data Security
      AI-Powered Threat Detection for Cloud Storage
    • Singularity Cloud Security Posture Management
      Detect and Remediate Cloud Misconfigurations
    Securing AI
    • Prompt Security
      Secure AI Tools Across Your Enterprise
  • Why SentinelOne?
    Why SentinelOne?
    • Why SentinelOne?
      Cybersecurity Built for What’s Next
    • Our Customers
      Trusted by the World’s Leading Enterprises
    • Industry Recognition
      Tested and Proven by the Experts
    • About Us
      The Industry Leader in Autonomous Cybersecurity
    Compare SentinelOne
    • Arctic Wolf
    • Broadcom
    • CrowdStrike
    • Cybereason
    • Microsoft
    • Palo Alto Networks
    • Sophos
    • Splunk
    • Trellix
    • Trend Micro
    • Wiz
    Verticals
    • Energy
    • Federal Government
    • Finance
    • Healthcare
    • Higher Education
    • K-12 Education
    • Manufacturing
    • Retail
    • State and Local Government
  • Services
    Managed Services
    • Managed Services Overview
      Wayfinder Threat Detection & Response
    • Threat Hunting
      World-Class Expertise and Threat Intelligence
    • Managed Detection & Response
      24/7/365 Expert MDR Across Your Entire Environment
    • Incident Readiness & Response
      DFIR, Breach Readiness, & Compromise Assessments
    Support, Deployment, & Health
    • Technical Account Management
      Customer Success with Personalized Service
    • SentinelOne GO
      Guided Onboarding & Deployment Advisory
    • SentinelOne University
      Live and On-Demand Training
    • Services Overview
      Comprehensive Solutions for Seamless Security Operations
    • SentinelOne Community
      Community Login
  • Partners
    Our Network
    • MSSP Partners
      Succeed Faster with SentinelOne
    • Singularity Marketplace
      Extend the Power of S1 Technology
    • Cyber Risk Partners
      Enlist Pro Response and Advisory Teams
    • Technology Alliances
      Integrated, Enterprise-Scale Solutions
    • SentinelOne for AWS
      Hosted in AWS Regions Around the World
    • Channel Partners
      Deliver the Right Solutions, Together
    • SentinelOne for Google Cloud
      Unified, Autonomous Security Giving Defenders the Advantage at Global Scale
    • Partner Locator
      Your Go-to Source for Our Top Partners in Your Region
    Partner Portal→
  • Resources
    Resource Center
    • Case Studies
    • Data Sheets
    • eBooks
    • Reports
    • Videos
    • Webinars
    • Whitepapers
    • Events
    View All Resources→
    Blog
    • Feature Spotlight
    • For CISO/CIO
    • From the Front Lines
    • Identity
    • Cloud
    • macOS
    • SentinelOne Blog
    Blog→
    Tech Resources
    • SentinelLABS
    • Ransomware Anthology
    • Cybersecurity 101
  • About
    About SentinelOne
    • About SentinelOne
      The Industry Leader in Cybersecurity
    • Investor Relations
      Financial Information & Events
    • SentinelLABS
      Threat Research for the Modern Threat Hunter
    • Careers
      The Latest Job Opportunities
    • Press & News
      Company Announcements
    • Cybersecurity Blog
      The Latest Cybersecurity Threats, News, & More
    • FAQ
      Get Answers to Our Most Frequently Asked Questions
    • DataSet
      The Live Data Platform
    • S Foundation
      Securing a Safer Future for All
    • S Ventures
      Investing in the Next Generation of Security, Data and AI
  • Pricing
Get StartedContact Us
CVE Vulnerability Database
Vulnerability Database/CVE-2026-25574

CVE-2026-25574: Payload CMS Auth Bypass Vulnerability

CVE-2026-25574 is an authentication bypass flaw in Payload CMS that allows users to access preferences across different auth collections. This post covers the technical details, affected versions, impact, and mitigation steps.

Published: February 13, 2026

CVE-2026-25574 Overview

A cross-collection Insecure Direct Object Reference (IDOR) vulnerability has been discovered in Payload CMS, a free and open source headless content management system. Prior to version 3.74.0, the payload-preferences internal collection is vulnerable to unauthorized access across different authentication collections. In multi-auth collection environments using Postgres or SQLite with default serial/auto-increment IDs, authenticated users from one auth collection can read and delete preferences belonging to users in different auth collections when their numeric IDs collide.

Critical Impact

Authenticated attackers can access and delete user preferences belonging to other users in different authentication collections due to predictable ID collision, potentially leading to unauthorized data disclosure and data integrity issues.

Affected Products

  • Payload CMS versions prior to 3.74.0
  • Environments using Postgres database with default serial IDs
  • Environments using SQLite database with auto-increment IDs

Discovery Timeline

  • February 6, 2026 - CVE-2026-25574 published to NVD
  • February 9, 2026 - Last updated in NVD database

Technical Details for CVE-2026-25574

Vulnerability Analysis

This vulnerability is classified under CWE-639 (Authorization Bypass Through User-Controlled Key), a common weakness where the application fails to properly verify that a user has the authorization to access or modify a specific resource. The flaw specifically affects Payload CMS deployments configured with multiple authentication collections.

The vulnerability arises in multi-tenant or multi-auth scenarios where Payload CMS manages separate user populations through distinct authentication collections. When these environments utilize Postgres or SQLite databases with their default sequential ID generation mechanisms, a dangerous condition emerges: users from different auth collections can have matching numeric identifiers.

The payload-preferences internal collection, which stores user-specific settings and configurations, does not adequately scope authorization checks to the originating authentication collection. This means that when User A from Auth Collection X has the same numeric ID as User B from Auth Collection Y, User A can potentially read or delete User B's preferences.

Root Cause

The root cause stems from insufficient authorization validation in the payload-preferences collection access control logic. The system relies solely on numeric user IDs without verifying the authentication collection context from which the request originates. This creates an authorization bypass when ID values collide across different authentication namespaces.

The default auto-increment ID strategy in both Postgres and SQLite guarantees that IDs will eventually collide across collections starting at ID 1, making this vulnerability reliably exploitable in affected configurations.

Attack Vector

An authenticated attacker can exploit this vulnerability through the following attack methodology:

  1. Reconnaissance: The attacker identifies that the target Payload CMS instance uses multiple authentication collections with default serial/auto-increment IDs
  2. ID Enumeration: The attacker determines or guesses numeric user IDs from other authentication collections
  3. Cross-Collection Access: By manipulating requests to the payload-preferences endpoints, the attacker can read preferences belonging to users in other auth collections whose IDs match known or guessed values
  4. Data Exfiltration/Manipulation: The attacker can view sensitive preference data or delete preferences, potentially disrupting other users' configured settings

The attack requires only low-privilege authenticated access to the system, making it particularly concerning in environments where user registration is open or minimally restricted.

Detection Methods for CVE-2026-25574

Indicators of Compromise

  • Unusual access patterns to the payload-preferences collection from users accessing preferences not belonging to their authentication collection
  • API requests targeting preference endpoints with user IDs that don't correspond to the authenticated user's collection
  • Unexpected preference deletions or modifications reported by users
  • Audit logs showing cross-collection preference access attempts

Detection Strategies

  • Implement logging on all payload-preferences API endpoints to capture the requesting user's authentication collection alongside the target preference ID
  • Monitor for anomalous patterns where users query or modify preferences with IDs outside their expected range
  • Deploy application-layer monitoring to detect IDOR-style sequential ID probing behavior
  • Review existing access logs for historical evidence of cross-collection preference access

Monitoring Recommendations

  • Enable detailed audit logging for all preference collection operations including read, update, and delete actions
  • Configure alerts for preference access requests where the target user ID doesn't match the authenticated session
  • Implement rate limiting on preference endpoints to slow down potential enumeration attacks
  • Establish baseline metrics for preference API usage to detect anomalous access patterns

How to Mitigate CVE-2026-25574

Immediate Actions Required

  • Upgrade Payload CMS to version 3.74.0 or later immediately
  • Audit existing preference data for signs of unauthorized access or deletion
  • Review authentication collection configurations and assess exposure risk
  • Consider implementing UUIDs instead of sequential IDs for new deployments pending upgrade

Patch Information

Payload CMS has addressed this vulnerability in version 3.74.0. The security patch implements proper authorization checks that scope preference access to the originating authentication collection, preventing cross-collection access even when numeric IDs collide.

For detailed technical information about this security fix, refer to the GitHub Security Advisory GHSA-jq29-r496-r955.

Workarounds

  • If immediate upgrade is not possible, consider implementing custom access control hooks on the payload-preferences collection to validate authentication collection context
  • Migrate to UUID-based identification for user records to eliminate ID collision scenarios
  • Restrict multi-auth collection deployments to use separate database instances where feasible
  • Implement additional application-layer authorization middleware to validate cross-collection access attempts

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

  • Vulnerability Details
  • TypeAuth Bypass
  • Vendor/TechPayload
  • SeverityMEDIUM
  • CVSS Score5.4
  • EPSS Probability0.03%
  • Known ExploitedNo
  • CVSS Vector
  • CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
  • Impact Assessment
  • ConfidentialityLow
  • IntegrityNone
  • AvailabilityNone
  • CWE References
  • CWE-639
  • Technical References
  • GitHub Security Advisory
  • Related CVEs
  • CVE-2026-34751: Payload CMS Auth Bypass Vulnerability
  • CVE-2026-34749: Payload CMS CSRF Vulnerability
  • CVE-2026-34747: Payload CMS SQL Injection Vulnerability
  • CVE-2026-34746: Payload CMS SSRF Vulnerability
Experience the World’s Most Advanced Cybersecurity Platform

Experience the World’s Most Advanced Cybersecurity Platform

See how our intelligent, autonomous cybersecurity platform can protect your organization now and into the future.

Try SentinelOne
  • Get Started
  • Get a Demo
  • Product Tour
  • Why SentinelOne
  • Pricing & Packaging
  • FAQ
  • Contact
  • Contact Us
  • Customer Support
  • SentinelOne Status
  • Language
  • Platform
  • Singularity Platform
  • Singularity Endpoint
  • Singularity Cloud
  • Singularity AI-SIEM
  • Singularity Identity
  • Singularity Marketplace
  • Purple AI
  • Services
  • Wayfinder TDR
  • SentinelOne GO
  • Technical Account Management
  • Support Services
  • Verticals
  • Energy
  • Federal Government
  • Finance
  • Healthcare
  • Higher Education
  • K-12 Education
  • Manufacturing
  • Retail
  • State and Local Government
  • Cybersecurity for SMB
  • Resources
  • Blog
  • Labs
  • Case Studies
  • Videos
  • Product Tours
  • Events
  • Cybersecurity 101
  • eBooks
  • Webinars
  • Whitepapers
  • Press
  • News
  • Ransomware Anthology
  • Company
  • About Us
  • Our Customers
  • Careers
  • Partners
  • Legal & Compliance
  • Security & Compliance
  • Investor Relations
  • S Foundation
  • S Ventures

©2026 SentinelOne, All Rights Reserved.

Privacy Notice Terms of Use

English