CVE-2025-65186
Summary (CVE-2025-65186): Grav CMS 1.7.49 is reported vulnerable to Cross Site Scripting (XSS) via the page editor. The Markdown editor does not adequately sanitize script tags, enabling stored XSS payloads that execute when pages are viewed in the admin interface. Affected component: the admin/p...