PT-2026-50684
Name of the Vulnerable Software and Affected Versions Grav versions 1.7.52 through 2.0 Description An incomplete fix for a stored Cross-Site Scripting XSS issue allows users with admin.pages permissions to inject unsanitized CSS into the style attribute of images via Markdown media actions. While...