CVE-2026-45430

Backdrop CMS · Salesforce module

The Salesforce module for Backdrop CMS is susceptible to a Cross-Site Request Forgery (CSRF) vulnerability that could lead to unauthorized actions.

Executive summary

A CSRF vulnerability in the Salesforce module for Backdrop CMS may allow unauthorized actions to be performed on behalf of an authenticated user.

Vulnerability

This is a CWE-352 Cross-Site Request Forgery (CSRF) vulnerability. It requires user interaction (e.g., a victim clicking a link) to perform unauthorized actions within the administrative context.

Business impact

If successfully exploited, an attacker could trick an administrator into performing unintended actions, such as modifying configuration or exfiltrating data via the Salesforce module. While it requires user interaction, the potential for high-privilege misuse justifies the severity and necessitates prompt remediation.

Remediation

Immediate Action: Update the Salesforce module for Backdrop CMS to version 1.x-1.0.1 or later.

Proactive Monitoring: Review administrative audit logs for any unexpected changes made to Salesforce module settings or integrations.

Compensating Controls: Encourage administrators to maintain active browser sessions only when necessary and avoid clicking untrusted links while logged into the CMS backend.

Exploitation status

Public Exploit Available: No — there is no confirmed public weaponized exploit available.

Analyst recommendation

While CSRF attacks require specific user interaction, the impact on administrative modules can be significant. Organizations utilizing the Salesforce module on Backdrop CMS should verify their version and apply the update to version 1.x-1.0.1 to eliminate this risk.