Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up
getgrav getgrav/grav

Version unspecified

OTHER 8 CVEs

Known Vulnerabilities

CVE-2022-2073

Code Injection in GitHub repository getgrav/grav prior to 1.7.34.

CRITICAL CVSS 9.1 Published Jun 29, 2022

CVE-2022-1173

stored xss in GitHub repository getgrav/grav prior to 1.7.33.

HIGH CVSS 8.2 Published Apr 26, 2022

CVE-2022-0970

Cross-site Scripting (XSS) - Stored in GitHub repository getgrav/grav prior to 1.7.31.

HIGH CVSS 7.1 Published Mar 15, 2022

CVE-2022-0743

Cross-site Scripting (XSS) - Stored in GitHub repository getgrav/grav prior to 1.7.31.

MEDIUM CVSS 4.6 Published Feb 28, 2022

CVE-2022-0268

Cross-site Scripting (XSS) - Stored in Packagist getgrav/grav prior to 1.7.28.

MEDIUM CVSS 5.7 Published Jan 25, 2022

CVE-2021-3924

grav is vulnerable to Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

HIGH CVSS 8.8 Published Nov 05, 2021

CVE-2021-3904

grav is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

MEDIUM CVSS 6.3 Published Oct 27, 2021

CVE-2021-3818

grav is vulnerable to Reliance on Cookies without Validation and Integrity Checking

MEDIUM CVSS 6.3 Published Sep 27, 2021