Grav Security Vulnerabilities and Issues — Grav CVE List

Lucene search

GetgravGrav

2 matches found

CVE•added 2022/01/25 11:15 a.m.•48 views

CVE-2022-0268

Cross-site Scripting (XSS) - Stored in Packagist getgrav/grav prior to 1.7.28.

5.7CVSS5.1AI score0.00266EPSS

CVE•added 2024/02/09 7:15 a.m.•32 views

CVE-2023-31506

A cross-site scripting (XSS) vulnerability in Grav versions 1.7.44 and before, allows remote authenticated attackers to execute arbitrary web scripts or HTML via the onmouseover attribute of an ISINDEX element.

5.4CVSS5.1AI score0.00046EPSS