CVE-2025-50286

🗓️ 06 Aug 2025 00:00:00Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 21 Views🌐 WEB

Remote Code Execution vulnerability in Grav CMS v1.7.48 allows PHP code execution via plugin upload

Reporter	Title	Published	Views	Family All 19
ATTACKERKB	CVE-2025-50286	6 Aug 202500:00	–	attackerkb
Circl	CVE-2025-50286	6 Aug 202517:50	–	circl
CNNVD	Grav CMS 安全漏洞	6 Aug 202500:00	–	cnnvd
CNVD	Grav CMS Remote Code Execution Vulnerability	18 Aug 202500:00	–	cnvd
Cvelist	CVE-2025-50286	6 Aug 202500:00	–	cvelist
GithubExploit	Exploit for Unrestricted Upload of File with Dangerous Type in Getgrav Grav	28 Feb 202617:39	–	githubexploit
GithubExploit	Exploit for CVE-2025-50286	5 Aug 202501:46	–	githubexploit
Exploit DB	Grav CMS 1.7.48 - Remote Code Execution (RCE)	11 Aug 202500:00	–	exploitdb
EUVD	EUVD-2025-23842	3 Oct 202520:07	–	euvd
Metasploit	Grav CMS Admin Direct Install Authenticated Plugin Upload RCE	31 Mar 202619:02	–	metasploit

NVD

Node

getgrav gravMatch1.7.48

Source	Link
github	www.github.com/binneko/CVE-2025-50286

Parameter	Position	Path	Description	CWE
uploaded_file	path	/admin/tools/direct-install	Authenticated Grav CMS admin can upload a crafted plugin via Direct Install, leading to arbitrary PHP code execution on the server.	CWE-434
admin-nonce	path	/admin/tools/direct-install	Authenticated Grav CMS admin can upload a crafted plugin via Direct Install, leading to arbitrary PHP code execution on the server.	CWE-434
task	path	/admin/tools/direct-install	Authenticated Grav CMS admin can upload a crafted plugin via Direct Install, leading to arbitrary PHP code execution on the server.	CWE-434

07 Nov 2025 19:18Current

7.6High risk

Vulners AI Score7.6

CVSS 3.18.1

EPSS0.73126

SSVC