cbcvebase.
CVE-2025-66300
published 2025-12-01

CVE-2025-66300: Grav is a file-based Web platform. Prior to 1.8.0-beta.27, A low privilege user account with page editing privilege can read any server files using…

PriorityP359high8.5CVSS 3.1
AVNACLPRLUINSCCHINAL
EPSS
0.40%
31.5th percentile
Grav is a file-based Web platform. Prior to 1.8.0-beta.27, A low privilege user account with page editing privilege can read any server files using "Frontmatter" form. This includes Grav user account files (/grav/user/accounts/*.yaml), which store hashed user password, 2FA secret, and the password reset token. This can allow an adversary to compromise any registered account by resetting a password for a user to get access to the password reset token from the file or by cracking the hashed password. This vulnerability is fixed in 1.8.0-beta.27.

Affected

4 ranges
VendorProductVersion rangeFixed in
getgravgrav< 1.8.0-beta.271.8.0-beta.27
getgravgrav< 1.8.01.8.0
getgravgrav
getgravgrav>= 0 < 1.8.0-beta.271.8.0-beta.27

CVSS provenance

nvdv3.18.5HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L
ghsa5.4MEDIUM
osv5.4MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.