getgrav Summary
Latest vulnerabilities published by getgrav
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Cross Site Scripting Vulnerability in Grav CMS by GetGrav
CVE-2025-63593GetGravGrav CMSCross Site Scripting Vulnerability in Grav by GetGrav
CVE-2025-46199GetGravGrav9.8CRITICALAdversaries Can Compromise User Accounts and Read Sensitive Information
CVE-2024-34082GetgravGrav9.9CRITICALGrav vulnerability allows arbitrary code execution and elevated privileges
CVE-2024-28119GetgravGrav8.8HIGHGrav vulnerability allows arbitrary code execution and elevated privileges
CVE-2024-28118GetgravGrav8.8HIGHGrav vulnerability allows arbitrary code execution and elevated privileges
CVE-2024-28117GetgravGrav8.8HIGHGrav CMS vulnerable to Server-Side Template Injection (SSTI)
CVE-2024-28116GetgravGravπΎπ‘EPSS 56%8.8HIGHGrav File Upload Path Traversal Vulnerability: Severe Risks Ahead
CVE-2024-27921GetgravGrav8.8HIGHGrav Fixes Remote Code Execution Vulnerability in Previous Versions
CVE-2024-27923GetgravGrav8.8HIGHXSS Vulnerability in DOMSanitizer Library by Rhukster
CVE-2023-49146GetgravDom-sanitizer6.1MEDIUMServer-side Template Injection (SSTI) in grav
CVE-2023-37897GetgravGrav7.2HIGHGrav vulnerable to Server-side Template Injection (SSTI) via Denylist Bypass
CVE-2023-34253GetgravGrav8.8HIGHGrav Server-side Template Injection (SSTI) via Twig Default Filters
CVE-2023-34448GetgravGrav8.8HIGHGrav vulnerable to Self Cross Site Scripting in /forgot_password
CVE-2023-34452GetgravGrav5.4MEDIUMGrav Server Side Template Injection vulnerability
CVE-2023-34251getgravgrav7.2HIGHGrav Server-side Template Injection via Insufficient Validation in filterFilter
CVE-2023-34252GetgravGrav8.8HIGHCode Injection in getgrav/grav
CVE-2022-2073GetgravGetgrav/grav9.1CRITICALstored xss in getgrav/grav
CVE-2022-1173GetgravGetgrav/grav8.2HIGHCross-site Scripting (XSS) - Stored in getgrav/grav
CVE-2022-0970GetgravGetgrav/grav7.1HIGHCross-site Scripting (XSS) - Stored in getgrav/grav
CVE-2022-0743GetgravGetgrav/grav4.6MEDIUMCross-site Scripting (XSS) - Stored in getgrav/grav
CVE-2022-0268GetgravGetgrav/grav5.7MEDIUMCross-site Scripting (XSS) - Stored in getgrav/grav-plugin-admin
CVE-2021-3920GetgravGetgrav/grav-plugin-admin4.6MEDIUMPath Traversal in getgrav/grav
CVE-2021-3924GetgravGetgrav/grav8.8HIGHCross-site Scripting (XSS) - Stored in getgrav/grav
CVE-2021-3904GetgravGetgrav/grav6.3MEDIUMReliance on Cookies without Validation and Integrity Checking in getgrav/grav
CVE-2021-3818GetgravGetgrav/grav6.3MEDIUM