CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0970 – Cross-site Scripting (XSS) - Stored in getgrav/grav
https://notcve.org/view.php?id=CVE-2022-0970
Cross-site Scripting (XSS) - Stored in GitHub repository getgrav/grav prior to 1.7.31. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en el repositorio de GitHub getgrav/grav versiones anteriores a 1.7.31 • https://github.com/getgrav/grav/commit/f19297d5f70476e7bedae9f2acef6b43615538b8 https://huntr.dev/bounties/dd436c44-cbf4-48ac-8817-3a24872534ec • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0743 – Cross-site Scripting (XSS) - Stored in getgrav/grav
https://notcve.org/view.php?id=CVE-2022-0743
Cross-site Scripting (XSS) - Stored in GitHub repository getgrav/grav prior to 1.7.31. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en el repositorio GitHub getgrav/grav versiones anteriores a 1.7.31. • https://github.com/getgrav/grav/commit/3dd0cabeac9835fe64dcb4b68c658b39f1f6be2f https://huntr.dev/bounties/32ea4ddb-5b41-4bf9-b5a1-ef455fe2d293 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.7EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0268 – Cross-site Scripting (XSS) - Stored in getgrav/grav
https://notcve.org/view.php?id=CVE-2022-0268
Cross-site Scripting (XSS) - Stored in Packagist getgrav/grav prior to 1.7.28. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en Packagist getgrav/grav versiones anteriores a 1.7.28 • https://github.com/getgrav/grav/commit/6f2fa9311afb9ecd34030dec2aff7b39e9e7e735 https://huntr.dev/bounties/67085545-331e-4469-90f3-a1a46a078d39 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-3924 – Path Traversal in getgrav/grav
https://notcve.org/view.php?id=CVE-2021-3924
grav is vulnerable to Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') grav es vulnerable a una limitación inadecuada de un nombre de ruta a un directorio restringido ("Salto de Ruta") • https://github.com/getgrav/grav/commit/8f9c417c04b89dc8d2de60b95e7696821b2826ce https://huntr.dev/bounties/7ca13522-d0c9-4eff-a7dd-6fd1a7f205a2 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 6.3EPSS: 0%CPEs: 1EXPL: 1CVE-2021-3904 – Cross-site Scripting (XSS) - Stored in getgrav/grav
https://notcve.org/view.php?id=CVE-2021-3904
grav is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') grav es vulnerable a una Neutralización Inapropiada de Entradas Durante la Generación de Páginas Web ("Cross-site Scripting") • https://github.com/getgrav/grav/commit/afc69a3229bb6fe120b2c1ea27bc6f196ed7284d https://huntr.dev/bounties/b1182515-d911-4da9-b4f7-b4c341a62a8d • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •