cbcvebase.

Getgrav Grav vulnerabilities

73 known vulnerabilities affecting getgrav/grav.

Total CVEs
73
CISA KEV
0
Public exploits
7
Exploited in wild
0
Severity breakdown
CRITICAL8HIGH31MEDIUM34

Vulnerabilities

Page 3 of 4
CVE-2025-46198P3HIGHCVSS 8.8≥ 1.7.46, ≤ 1.7.482025-07-25
CVE-2025-46198 [HIGH] CWE-79 CVE-2025-46198: Cross Site Scripting vulnerability in grav v.1.7.48, v.1.7.47 and v.1.7.46 allows an attacker to exe Cross Site Scripting vulnerability in grav v.1.7.48, v.1.7.47 and v.1.7.46 allows an attacker to execute arbitrary code via the onerror attribute of the img element
nvd
CVE-2026-42610P3MEDIUMCVSS 6.5≤ 1.8.0v2.0.0+1 more2026-05-11
CVE-2026-42610 [MEDIUM] CWE-863 CVE-2026-42610: Grav is a file-based Web platform. Prior to 2.0.0-beta.2, a low-privileged user (EX: Content Editor Grav is a file-based Web platform. Prior to 2.0.0-beta.2, a low-privileged user (EX: Content Editor with only pages.update permissions) can bypass the existing Twig sandbox restrictions by utilizing the grav['accounts'] service. Attacker can programmatically load administrative user objects and extract sensitive data, including Bcrypt password hashes
ghsanvd
CVE-2020-29553P3HIGH≥ 1.7.0-beta.1, ≤ 1.7.0-rc.17≥ 0, < 1.6.302022-05-24
CVE-2020-29553 [HIGH] CWE-352 Grav CMS Cross-Site Request Forgery (CSRF) Grav CMS Cross-Site Request Forgery (CSRF) The Scheduler in Grav CMS through 1.7.0-rc.17 allows an attacker to execute a system command by tricking an admin into visiting a malicious website (CSRF).
ghsaosv
CVE-2025-66306P3MEDIUMCVSS 6.5≥ 1.7.48, < 1.8.0v1.8.0+1 more2025-12-01
CVE-2025-66306 [MEDIUM] CWE-639 CVE-2025-66306: Grav is a file-based Web platform. Prior to 1.8.0-beta.27, there is an IDOR (Insecure Direct Object Grav is a file-based Web platform. Prior to 1.8.0-beta.27, there is an IDOR (Insecure Direct Object Reference) vulnerability in the Grav CMS Admin Panel which allows low-privilege users to access sensitive information from other accounts. Although direct account takeover is not possible, admin email addresses and other metadata can be exposed, increa
ghsanvdosv
CVE-2025-66307P4MEDIUMCVSS 5.3fixed in 1.11.0-beta.12025-12-01
CVE-2025-66307 [MEDIUM] CWE-204 CVE-2025-66307: This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Gra This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages. Prior to 1.11.0-beta.1, a user enumeration and email disclosure vulnerability exists in Grav. The "Forgot Password" functionality at /admin/forgot leaks information about valid usernames and their associated email
ghsanvdosv
CVE-2020-29556P4MEDIUM≥ 1.7.0-beta.1, ≤ 1.7.0-rc.17≥ 0, < 1.6.302022-05-24
CVE-2020-29556 [MEDIUM] CWE-22 Grav CMS Local File Injection Grav CMS Local File Injection The Backup functionality in Grav CMS through 1.7.0-rc.17 allows an authenticated attacker to read arbitrary local files on the underlying server by exploiting a path-traversal technique. (This vulnerability can also be exploited by an unauthenticated attacker due to a lack of CSRF protection.)
ghsaosv
CVE-2021-3818P4MEDIUMCVSS 5.3fixed in 1.7.222021-09-27
CVE-2021-3818 [MEDIUM] CWE-565 CVE-2021-3818: grav is vulnerable to Reliance on Cookies without Validation and Integrity Checking grav is vulnerable to Reliance on Cookies without Validation and Integrity Checking
ghsanvdosv
CVE-2022-0970P4MEDIUMCVSS 5.4fixed in 1.7.312022-03-15
CVE-2022-0970 [MEDIUM] CWE-79 CVE-2022-0970: Cross-site Scripting (XSS) - Stored in GitHub repository getgrav/grav prior to 1.7.31. Cross-site Scripting (XSS) - Stored in GitHub repository getgrav/grav prior to 1.7.31.
ghsanvdosv
CVE-2025-66310P4MEDIUMCVSS 5.4fixed in 1.11.0-beta.12025-12-01
CVE-2025-66310 [MEDIUM] CWE-79 CVE-2025-66310: This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Gra This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages. Prior to 1.11.0-beta.1, a Stored Cross-Site Scripting (XSS) vulnerability was identified in the /admin/pages/[page] endpoint of the Grav application. This vulnerability allows attackers to inject malicious scripts
ghsanvdosv
CVE-2025-66312P4MEDIUMCVSS 5.4fixed in 1.11.0-beta.12025-12-01
CVE-2025-66312 [MEDIUM] CWE-79 CVE-2025-66312: This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Gra This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages. Prior to 1.11.0-beta.1, a Stored Cross-Site Scripting (XSS) vulnerability was identified in the /admin/accounts/groups/Grupo endpoint of the Grav application. This vulnerability allows attackers to inject malicious
ghsanvdosv
CVE-2025-66308P4MEDIUMCVSS 5.4fixed in 1.11.0-beta.12025-12-01
CVE-2025-66308 [MEDIUM] CWE-79 CVE-2025-66308: This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Gra This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages. Prior to 1.11.0-beta.1, a Stored Cross-Site Scripting (XSS) vulnerability was identified in the /admin/config/site endpoint of the Grav application. This vulnerability allows attackers to inject malicious scripts i
ghsanvdosv
CVE-2025-66311P4MEDIUMCVSS 5.4fixed in 1.11.0-beta.12025-12-01
CVE-2025-66311 [MEDIUM] CWE-79 CVE-2025-66311: This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Gra This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages. Prior to 1.11.0-beta.1, a Stored Cross-Site Scripting (XSS) vulnerability was identified in the /admin/pages/[page] endpoint of the Grav application. This vulnerability allows attackers to inject malicious scripts
ghsanvdosv
CVE-2026-44737P4MEDIUM≥ 0, < 1.7.49.52026-05-08
CVE-2026-44737 [MEDIUM] CWE-79 Grav: Stored XSS via page title (data[header][title]) in admin panel Grav: Stored XSS via page title (data[header][title]) in admin panel ### Summary _A Stored Cross-Site Scripting (XSS) vulnerability was identified in the /admin/pages/[page] endpoint of the Grav application. This vulnerability allows attackers to inject malicious scripts into the data[header][title] parameter._ --- ### Details Vulnerable Endpoint: GET /admin/pages/[page] Parameter: data[header]
ghsa
CVE-2023-34452P4MEDIUMCVSS 6.1≤ 1.7.422023-06-14
CVE-2023-34452 [MEDIUM] CWE-79 CVE-2023-34452: Grav is a flat-file content management system. In versions 1.7.42 and prior, the "/forgot_password" Grav is a flat-file content management system. In versions 1.7.42 and prior, the "/forgot_password" page has a self-reflected cross-site scripting vulnerability that can be exploited by injecting a script into the "email" parameter of the request. While this vulnerability can potentially allow an attacker to execute arbitrary code on the user's browse
nvd
CVE-2025-65186P4MEDIUMCVSS 6.1v1.7.492025-12-02
CVE-2025-65186 [MEDIUM] CWE-79 CVE-2025-65186: Grav CMS 1.7.49 is vulnerable to Cross Site Scripting (XSS). The page editor allows authenticated us Grav CMS 1.7.49 is vulnerable to Cross Site Scripting (XSS). The page editor allows authenticated users to edit page content via a Markdown editor. The editor fails to properly sanitize tags, allowing stored XSS payloads to execute when pages are viewed in the admin interface.
ghsanvdosv
CVE-2026-42612P4MEDIUMCVSS 5.4≤ 1.8.0v2.0.0+1 more2026-05-11
CVE-2026-42612 [MEDIUM] CWE-79 CVE-2026-42612: Grav is a file-based Web platform. Prior to 2.0.0-beta.2, a stored Cross-Site Scripting (XSS) vulner Grav is a file-based Web platform. Prior to 2.0.0-beta.2, a stored Cross-Site Scripting (XSS) vulnerability in getgrav/grav allows publisher-level accounts to execute arbitrary JavaScript. The issue arises from a blacklist bypass in the detectXss() function when handling unquoted HTML event attributes. This vulnerability is fixed in 2.0.0-beta.2.
ghsanvd
CVE-2020-37256P4MEDIUMCVSS 5.4fixed in 1.6.302026-06-25
CVE-2020-37256 [MEDIUM] CWE-79 CVE-2020-37256: Grav before 1.6.30 contains a cross-site scripting vulnerability in the Admin plugin page editor def Grav before 1.6.30 contains a cross-site scripting vulnerability in the Admin plugin page editor default security configuration. Privileged users with page editing capabilities can inject malicious scripts to execute arbitrary code and install malicious plugins for system access.
nvd
CVE-2026-42842P4MEDIUMCVSS 5.4fixed in 2.0.0-beta.22026-05-11
CVE-2026-42842 [MEDIUM] CWE-79 CVE-2026-42842: The form plugin for Grav adds the ability to create and use forms. Prior to 9.1.0, a Stored Cross-Si The form plugin for Grav adds the ability to create and use forms. Prior to 9.1.0, a Stored Cross-Site Scripting (XSS) vulnerability exists in the Grav CMS Form plugin's select field template. Taxonomy tag and category values are rendered with the Twig |raw filter in the admin panel, bypassing the global autoescape protection. An editor-level user ca
ghsanvd
CVE-2025-66843P4MEDIUMCVSS 5.4fixed in 1.7.49.52025-12-15
CVE-2025-66843 [MEDIUM] CWE-79 CVE-2025-66843: grav before v1.7.49.5 has a Stored Cross-Site Scripting (Stored XSS) vulnerability in the page editi grav before v1.7.49.5 has a Stored Cross-Site Scripting (Stored XSS) vulnerability in the page editing functionality. An authenticated low-privileged user with permission to edit content can inject malicious JavaScript payloads into editable fields. The payload is stored on the server and later executed when any other user views or edits the affected
ghsanvdosv
CVE-2025-66309P4MEDIUMCVSS 6.1fixed in 1.11.0-beta.12025-12-01
CVE-2025-66309 [MEDIUM] CWE-79 CVE-2025-66309: This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Gra This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages. Prior to 1.11.0-beta.1, a Reflected Cross-Site Scripting (XSS) vulnerability was identified in the /admin/pages/[page] endpoint of the Grav application. This vulnerability allows attackers to inject malicious scrip
ghsanvdosv
Getgrav Grav vulnerabilities | cvebase