Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Exploit for Code Injection in Getgrav Grav

🗓️ 06 Jun 2021 00:21:51Type 
githubexploit
 githubexploit👁 119 Views

Unsafe Twig processing leading to RCE in Grav CMS 1.7.1

Show more

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
ReporterTitlePublishedViews
Family
Veracode		Remote Code Execution
19 Apr 202109:30
veracode
RedhatCVE		CVE-2021-29440
22 May 202518:29
redhatcve
CVE		CVE-2021-29440
13 Apr 202120:15
cve
Cvelist		CVE-2021-29440 Twig allowing dangerous PHP functions by default
13 Apr 202119:55
cvelist
Prion		Design/Logic Flaw
13 Apr 202120:15
prion
Exploit DB		Grav CMS 1.7.10 - Server-Side Template Injection (SSTI) (Authenticated)
7 Jun 202100:00
exploitdb
Packet Storm		Grav CMS 1.7.10 Server-Side Template Injection
7 Jun 202100:00
packetstorm
0day.today		Grav CMS 1.7.10 - Server-Side Template Injection (SSTI) (Authenticated) Exploit
7 Jun 202100:00
zdt
NVD		CVE-2021-29440
13 Apr 202120:15
nvd
Github Security Blog		Grav's Twig processing allowing dangerous PHP functions by default
16 Apr 202119:53
github
Rows per page

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
06 Jun 2021 00:51Current
7.7High risk
Vulners AI Score7.7
CVSS26.5
CVSS37.2 - 8.4
EPSS0.14435
grav cmsrcetwig processingcode injection
119
.json
Report