CVE-2020-29553
https://notcve.org/view.php?id=CVE-2020-29553
The Scheduler in Grav CMS through 1.7.0-rc.17 allows an attacker to execute a system command by tricking an admin into visiting a malicious website (CSRF). El Scheduler en Grav CMS versiones hasta 1.7.0-rc.17, permite a un atacante ejecutar un comando del sistema al engañar a un administrador de visitar un sitio web malicioso (CSRF) • https://blog.bssi.fr/cve-2020-29553-cve-2020-29555-cve-2020-29556-multiple-vulnerabilities-within-cms-grav • CWE-352: Cross-Site Request Forgery (CSRF) •
CVE-2020-29555
https://notcve.org/view.php?id=CVE-2020-29555
The BackupDelete functionality in Grav CMS through 1.7.0-rc.17 allows an authenticated attacker to delete arbitrary files on the underlying server by exploiting a path-traversal technique. (This vulnerability can also be exploited by an unauthenticated attacker due to a lack of CSRF protection.) La funcionalidad BackupDelete en Grav CMS versiones hasta 1.7.0-rc.17, permite a un atacante autenticado eliminar archivos arbitrarios en el servidor subyacente al explotar una técnica de salto de ruta. (Esta vulnerabilidad también puede ser explotada por un atacante no autenticado debido a una falta de protección CSRF) • https://blog.bssi.fr/cve-2020-29553-cve-2020-29555-cve-2020-29556-multiple-vulnerabilities-within-cms-grav • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVE-2020-29556
https://notcve.org/view.php?id=CVE-2020-29556
The Backup functionality in Grav CMS through 1.7.0-rc.17 allows an authenticated attacker to read arbitrary local files on the underlying server by exploiting a path-traversal technique. (This vulnerability can also be exploited by an unauthenticated attacker due to a lack of CSRF protection.) La funcionalidad Backup en Grav CMS versiones hasta 1.7.0-rc.17, permite a un atacante autenticado leer archivos locales arbitrarios en el servidor subyacente al explotar una técnica de salto de ruta. (Esta vulnerabilidad también puede ser explotada por un atacante no autenticado debido a una falta de protección CSRF) • https://blog.bssi.fr/cve-2020-29553-cve-2020-29555-cve-2020-29556-multiple-vulnerabilities-within-cms-grav • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVE-2019-16126
https://notcve.org/view.php?id=CVE-2019-16126
Grav through 1.6.15 allows (Stored) Cross-Site Scripting due to JavaScript execution in SVG images. Grav a 1.6.15 permite secuencias de comandos entre sitios (almacenadas) debido a la ejecución de JavaScript en imágenes SVG. • https://github.com/getgrav/grav/issues/2657 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2018-5233 – Grav CMS 1.2.4 Cross Site Scripting
https://notcve.org/view.php?id=CVE-2018-5233
Cross-site scripting (XSS) vulnerability in system/src/Grav/Common/Twig/Twig.php in Grav CMS before 1.3.0 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to admin/tools. Vulnerabilidad de Cross-Site Scripting (XSS) en system/src/Grav/Common/Twig/Twig.php en Grav CMS en versiones anteriores a la 1.3.0 permite que atacantes remotos inyecten scripts web o HTML arbitrarios mediante PATH_INFO en admin/tools. Grav CMS version 1.2.4 suffers from a cross site scripting vulnerability. • http://www.openwall.com/lists/oss-security/2018/03/15/1 https://sysdream.com/news/lab/2018-03-15-cve-2018-5233-grav-cms-admin-plugin-reflected-cross-site-scripting-xss-vulnerability • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •