getgrav Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by getgrav
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Unauthenticated Remote Code Execution in GravCMS by Grav
CVE-2021-47812GetgravGravcmsπΎπ‘9.3CRITICALAuthorization Flaw in Grav Web Platform Affects User Permissions
CVE-2025-66301GetgravGravEPSS 25%8.6HIGHFile-Based Web Platform Vulnerability in Grav Affects User Accounts
CVE-2025-66300GetgravGrav8.5HIGHServer-Side Template Injection in Grav CMS Affects Authenticated Users
CVE-2025-66299GetgravGrav8.8HIGHServer-Side Template Vulnerability in Grav Web Platform
CVE-2025-66298GetgravGrav7.7HIGHPrivilege Escalation and Remote Code Execution in Grav CMS by Grav
CVE-2025-66297GetgravGrav7.4HIGHPrivilege Escalation Vulnerability in Grav's Admin Plugin
CVE-2025-66296GetgravGrav8.8HIGHServer-Side Template Injection Vulnerability in Grav Web Platform
CVE-2025-66294GetgravGravEPSS 36%8.7HIGHPath Traversal Vulnerability in Grav Web Platform
CVE-2025-66295GetgravGrav8.8HIGHCross Site Scripting Vulnerability in Grav by GetGrav
CVE-2025-46199GetGravGrav9.8CRITICALAdversaries Can Compromise User Accounts and Read Sensitive Information
CVE-2024-34082GetgravGrav9.9CRITICALGrav vulnerability allows arbitrary code execution and elevated privileges
CVE-2024-28119GetgravGrav8.8HIGHGrav vulnerability allows arbitrary code execution and elevated privileges
CVE-2024-28118GetgravGrav8.8HIGHGrav vulnerability allows arbitrary code execution and elevated privileges
CVE-2024-28117GetgravGrav8.8HIGHGrav CMS vulnerable to Server-Side Template Injection (SSTI)
CVE-2024-28116GetgravGravπΎπ‘EPSS 56%8.8HIGHGrav File Upload Path Traversal Vulnerability: Severe Risks Ahead
CVE-2024-27921GetgravGrav8.8HIGHGrav Fixes Remote Code Execution Vulnerability in Previous Versions
CVE-2024-27923GetgravGrav8.8HIGHServer-side Template Injection (SSTI) in grav
CVE-2023-37897GetgravGrav7.2HIGHGrav vulnerable to Server-side Template Injection (SSTI) via Denylist Bypass
CVE-2023-34253GetgravGrav8.8HIGHGrav Server-side Template Injection (SSTI) via Twig Default Filters
CVE-2023-34448GetgravGrav8.8HIGHGrav Server Side Template Injection vulnerability
CVE-2023-34251getgravgrav7.2HIGHGrav Server-side Template Injection via Insufficient Validation in filterFilter
CVE-2023-34252GetgravGrav8.8HIGHCode Injection in getgrav/grav
CVE-2022-2073GetgravGetgrav/grav9.1CRITICALstored xss in getgrav/grav
CVE-2022-1173GetgravGetgrav/grav8.2HIGHCross-site Scripting (XSS) - Stored in getgrav/grav
CVE-2022-0970GetgravGetgrav/grav7.1HIGH