Grav CMS 漏洞列表
共找到 4 个与 Grav CMS 相关的漏洞
📅 加载漏洞趋势中...
-
CVE-2018-5233: Grav CMS <1.3.0 - Cross-Site Scripting POC
Grav CMS before 1.3.0 is vulnerable to cross-site scripting via system/src/Grav/Common/Twig/Twig.php and allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to admin/tools. -
CVE-2018-5233: Grav CMS <1.3.0 - Cross-Site Scripting POC
Grav CMS before 1.3.0 is vulnerable to cross-site scripting via system/src/Grav/Common/Twig/Twig.php and allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to admin/tools. -
Grav CMS CVE-2024-28116 服务端模板注入漏洞 无POC
Grav CMS 中存在服务端模板注入漏洞,此漏洞是由于admin/pages/接口对用户的请求验证不当导致的。 -
Grav CMS CVE-2024-27921 目录遍历漏洞 无POC
Grav CMS存在目录遍历漏洞,此漏洞是由于task:addmedia接口对用户的请求验证不当导致的。