CVE-2020-11529
published 2020-04-04CVE-2020-11529: Common/Grav.php in Grav before 1.7 has an Open Redirect. This is partially fixed in 1.6.23 and still present in 1.6.x.
PriorityP341medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
10.88%
95.3th percentile
Common/Grav.php in Grav before 1.7 has an Open Redirect. This is partially fixed in 1.6.23 and still present in 1.6.x.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| getgrav | grav | <= 1.6.31 | — |
| getgrav | grav | >= 0 < 1.6.23 | 1.6.23 |
Detection & IOCsextracted from sources · hover to see the quote
- →Send a GET request with a double-URL-encoded open redirect payload in the path (%252f%255c) targeting the Grav CMS base URL and inspect the HTTP Location response header for an external redirect to a controlled domain.
- →The vulnerability resides in common/Grav.php; monitor or audit this file for unvalidated redirect logic in Grav versions prior to 1.7 (partially fixed in 1.6.23, still present in 1.6.x).
- ·The fix is only partial in 1.6.23; systems running any 1.6.x release remain vulnerable even after applying the partial patch. Full remediation requires upgrading to 1.7 or later. ↗
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.05.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Open Redirect in Grav
ghsa·2022-01-07
CVE-2020-11529 [MEDIUM] CWE-601 Open Redirect in Grav
Open Redirect in Grav
Common/Grav.php in Grav before 1.6.23 has an Open Redirect.
OSV
Open Redirect in Grav
osv·2022-01-07
CVE-2020-11529 [MEDIUM] Open Redirect in Grav
Open Redirect in Grav
Common/Grav.php in Grav before 1.6.23 has an Open Redirect.
No detection rules found.
Nuclei
Grav < 1.7 - Open Redirect
nuclei·CVSS 6.1
CVE-2020-11529 [MEDIUM] Grav < 1.7 - Open Redirect
Grav < 1.7 - Open Redirect
Grav before 1.7 has an open redirect vulnerability via common/Grav.php. This is partially fixed in 1.6.23 and still present in 1.6.x.
Template:
id: CVE-2020-11529
info:
name: Grav < 1.7 - Open Redirect
author: 0x_Akoko
severity: medium
description: Grav before 1.7 has an open redirect vulnerability via common/Grav.php. This is partially fixed in 1.6.23 and still present in 1.6.x.
impact: |
An attacker can exploit this vulnerability to redirect users to malicious websites, leading to phishing attacks.
remediation: |
Upgrade Grav CMS to version 1.7 or later to fix the open redirect vulnerability.
reference:
- https://github.com/getgrav/grav/issues/3134
- https://nvd.nist.gov/vuln/detail/CVE-2020-11529
- https://github.com/getgrav/grav/commit/2eae104c7a4bf32bc26
No writeups or analysis indexed.
https://getgrav.org/#changeloghttps://github.com/getgrav/grav/commit/2eae104c7a4bf32bc26cb8073d5c40464bfda3f7https://github.com/getgrav/grav/issues/3134https://getgrav.org/#changeloghttps://github.com/getgrav/grav/commit/2eae104c7a4bf32bc26cb8073d5c40464bfda3f7https://github.com/getgrav/grav/issues/3134
2020-04-04
Published