getgrav Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by getgrav
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Insecure Direct Object Reference in Grav API Plugin for Grav CMS
CVE-2026-42843GetgravGrav-plugin-api8.8HIGHFile-based Web Platform Vulnerability in Grav by GetGrav
CVE-2026-44738GetgravGrav7.7HIGHUnauthenticated Page-Content Overwrite in Grav Form Plugin
CVE-2026-42845GetgravGrav-plugin-form7.7HIGHAuthentication Bypass in Grav Login Plugin by Grav
CVE-2026-42613GetgravGrav9.4CRITICALStored Cross-Site Scripting Vulnerability in Grav Web Platform
CVE-2026-42612GetgravGrav8.5HIGHXSS Vulnerability in Grav Web Platform Prior to Version 2.0.0-beta.2
CVE-2026-42611GetgravGrav8.9HIGHBusiness Logic Vulnerability in Grav Admin Panel Affecting Grav Web Platform
CVE-2026-42609GetgravGrav8.1HIGHPath Traversal Vulnerability in Grav Web Platform by Getgrav
CVE-2026-42608GetgravGrav8.8HIGHRemote Code Execution Vulnerability in Grav Web Platform by GetGrav
CVE-2026-42607GetgravGrav9.1CRITICALXML External Entity Vulnerability in Grav CMS by GetGrav
CVE-2026-29924GetGravGrav CMS7.6HIGHUnauthenticated Remote Code Execution in GravCMS by Grav
CVE-2021-47812GetgravGravcmsπΎπ‘9.3CRITICALAuthorization Flaw in Grav Web Platform Affects User Permissions
CVE-2025-66301GetgravGravEPSS 26%8.6HIGHFile-Based Web Platform Vulnerability in Grav Affects User Accounts
CVE-2025-66300GetgravGrav8.5HIGHServer-Side Template Injection in Grav CMS Affects Authenticated Users
CVE-2025-66299GetgravGrav8.8HIGHServer-Side Template Vulnerability in Grav Web Platform
CVE-2025-66298GetgravGrav7.7HIGHPrivilege Escalation and Remote Code Execution in Grav CMS by Grav
CVE-2025-66297GetgravGrav7.4HIGHPrivilege Escalation Vulnerability in Grav's Admin Plugin
CVE-2025-66296GetgravGrav8.8HIGHServer-Side Template Injection Vulnerability in Grav Web Platform
CVE-2025-66294GetgravGravEPSS 37%8.7HIGHPath Traversal Vulnerability in Grav Web Platform
CVE-2025-66295GetgravGrav8.8HIGHCross Site Scripting Vulnerability in Grav by GetGrav
CVE-2025-46199GetGravGrav9.8CRITICALAdversaries Can Compromise User Accounts and Read Sensitive Information
CVE-2024-34082GetgravGrav9.9CRITICALGrav vulnerability allows arbitrary code execution and elevated privileges
CVE-2024-28119GetgravGrav8.8HIGHGrav vulnerability allows arbitrary code execution and elevated privileges
CVE-2024-28118GetgravGrav8.8HIGHGrav vulnerability allows arbitrary code execution and elevated privileges
CVE-2024-28117GetgravGrav8.8HIGHGrav CMS vulnerable to Server-Side Template Injection (SSTI)
CVE-2024-28116GetgravGravπΎπ‘EPSS 62%8.8HIGH