cbcvebase.
CVE-2026-55890
published 2026-06-21

CVE-2026-55890: A vulnerability classified as problematic has been found in getgrav grav. This vulnerability affects the function MediaObjectTrait::style of the component…

medium4.8
A vulnerability classified as problematic has been found in getgrav grav. This vulnerability affects the function MediaObjectTrait::style of the component Markdown Image Handler. This manipulation of the argument style causes cross site scripting. This vulnerability is registered as CVE-2026-55890. Remote exploitation of the attack is possible. No exploit is available. It is recommended to upgrade the affected component.

Affected

1 ranges
VendorProductVersion rangeFixed in
getgravgrav>= 0 < 2.0.0-rc.92.0.0-rc.9
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.