Grav 跨站请求伪造漏洞
Grav is a flat file CMS that uses Markdown files for content management. A cross-site request forgery vulnerability exists in the scheduler in Grav 1.7.0-rc.17 and earlier versions. An attacker can exploit this vulnerability to execute system commands by tricking an administrator into visiting a...