3 matches found
CVE-2020-29553
The Scheduler in Grav CMS through 1.7.0-rc.17 allows an attacker to execute a system command by tricking an admin into visiting a malicious website CSRF...
CVE-2020-29553
creationtimestamp| type| source ---|---|--- 2024-04-25 21:38:04+00:00| seen| https://t.me/arpsyndicate/4871...
CVE-2020-29553
CVE-2020-29553 affects Grav CMS (Scheduler) up to 1.7.0-rc.17. The vulnerability arises from CSRF, enabling an attacker to make an admin execute a system command by visiting a malicious site. Documented impact is execution of commands; no explicit patch/version fix is provided in the supplied sou...