PT-2023-24883 · Grav +1 · Grav +1

Name of the Vulnerable Software and Affected Versions: Grav versions prior to 1.7.42 Description: The issue concerns a server-side template injection vulnerability leveraging the default filter function. This allows for remote code execution by invoking arbitrary unsafe functions through other...

Grav 代码注入漏洞

Grav is a scalable CMS Content Management System for personal blogs, small content publishing platforms, and one-page product displays. A security vulnerability exists in Grav versions prior to 1.7.42, which stems from a server-side template injection SSTI vulnerability...