CVE-2025-66301

🗓️ 01 Dec 2025 21:30:43Reported by GitHub_MType

cve🔗 web.nvd.nist.gov👁 15 Views🌐 WEB

CVE-2025-66301 Grav: Broken access control lets editors modify frontmatter to alter form processing; fixed in 1.8.0-beta.27.

Reporter	Title	Published	Views	Family All 17
Circl	CVE-2025-66301	1 Dec 202520:40	–	circl
CNNVD	Grav 授权问题漏洞	1 Dec 202500:00	–	cnnvd
CNVD	Grav Authorization Issues Vulnerability	3 Dec 202500:00	–	cnvd
Cvelist	CVE-2025-66301 Grav ihas Broken Access Control which allows an Editor to modify the page's YAML Frontmatter to alter form processing actions	1 Dec 202521:30	–	cvelist
EUVD	EUVD-2025-200109	2 Dec 202500:36	–	euvd
Github Security Blog	Grav has Broken Access Control which allows an Editor to modify the page's YAML Frontmatter to alter form processing actions	2 Dec 202500:36	–	github
Metasploit	Grav CMS Twig SSTI Authenticated Sandbox Bypass RCE	12 Dec 202518:56	–	metasploit
NVD	CVE-2025-66301	1 Dec 202522:15	–	nvd
OSV	CVE-2025-66301 Grav ihas Broken Access Control which allows an Editor to modify the page's YAML Frontmatter to alter form processing actions	1 Dec 202521:30	–	osv
OSV	GHSA-V8X2-FJV7-8HJH Grav has Broken Access Control which allows an Editor to modify the page's YAML Frontmatter to alter form processing actions	2 Dec 202500:36	–	osv

NVD

Vulners

Node

getgrav gravRange<1.8.0

getgrav gravMatch1.8.0beta1

getgrav gravMatch1.8.0beta10

getgrav gravMatch1.8.0beta11

getgrav gravMatch1.8.0beta12

getgrav gravMatch1.8.0beta13

getgrav gravMatch1.8.0beta14

getgrav gravMatch1.8.0beta15

getgrav gravMatch1.8.0beta16

getgrav gravMatch1.8.0beta17

getgrav gravMatch1.8.0beta18

getgrav gravMatch1.8.0beta19

getgrav gravMatch1.8.0beta2

getgrav gravMatch1.8.0beta20

getgrav gravMatch1.8.0beta21

getgrav gravMatch1.8.0beta22

getgrav gravMatch1.8.0beta23

getgrav gravMatch1.8.0beta24

getgrav gravMatch1.8.0beta25

getgrav gravMatch1.8.0beta26

getgrav gravMatch1.8.0beta3

getgrav gravMatch1.8.0beta4

getgrav gravMatch1.8.0beta5

getgrav gravMatch1.8.0beta6

getgrav gravMatch1.8.0beta7

getgrav gravMatch1.8.0beta8

getgrav gravMatch1.8.0beta9

[
  {
    "vendor": "getgrav",
    "product": "grav",
    "versions": [
      {
        "version": "< 1.8.0-beta.27",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/getgrav/grav/security/advisories/GHSA-v8x2-fjv7-8hjh

Parameter	Position	Path	Description	CWE
data[header][title]	path	/admin/pages/{page_name}	Improper authorization on POST to modify page data (YAML frontmatter) enabling form behavior changes.	CWE-285
data[_json][header][form]	path	/admin/pages/{page_name}	Improper authorization on POST to modify page data (YAML frontmatter) enabling form behavior changes.	CWE-285
data[title]	path	/admin/pages	Form/page creation without proper access control can be abused to inject malicious payloads.	CWE-285
data[folder]	path	/admin/pages	Form/page creation without proper access control can be abused to inject malicious payloads.	CWE-285
data[route]	path	/admin/pages	Form/page creation without proper access control can be abused to inject malicious payloads.	CWE-285
data[name]	path	/admin/pages	Form/page creation without proper access control can be abused to inject malicious payloads.	CWE-285
data[visible]	path	/admin/pages	Form/page creation without proper access control can be abused to inject malicious payloads.	CWE-285
data[blueprint]	path	/admin/pages	Form/page creation without proper access control can be abused to inject malicious payloads.	CWE-285
task	path	/admin/pages	Form/page creation without proper access control can be abused to inject malicious payloads.	CWE-285
admin-nonce	path	/admin/pages	Form/page creation without proper access control can be abused to inject malicious payloads.	CWE-285

17 Jun 2026 09:56Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.19.6

CVSS 48.6

EPSS0.01231

SSVC

CWE-285