CVE-2026-25544

Name of the Vulnerable Software and Affected Versions Payload versions prior to 3.73.0

Description Payload is a free and open source headless content management system. Prior to version 3.73.0, user input was directly embedded into SQL queries without proper escaping when querying JSON or richText fields, leading to blind SQL injection attacks. An unauthenticated attacker could potentially extract sensitive data, such as emails and password reset tokens, and gain full account takeover without needing to crack passwords. This issue affects users utilizing Drizzle-based database adapters (@payloadcms/drizzle dependency) – @payloadcms/db-postgres, @payloadcms/db-vercel-postgres, @payloadcms/db-sqlite, and @payloadcms/db-d1-sqlite – and having accessible collections with type: 'json' or type: 'richText' fields where access.read is not set to false. The vulnerability does not affect users utilizing @payloadcms/db-mongodb.

Recommendations Upgrade to Payload version 3.73.0 or later. If an immediate upgrade is not possible, add access: { read: () => false } to all JSON and richText fields as a temporary mitigation.