Headline
Grav CMS 1.7.44 Server-Side Template Injection
GenGravSSTIExploit is a proof of concept Python script that exploits an authenticated server-side template injection (SSTI) vulnerability in Grav CMS versions 1.7.44 and below. This vulnerability allows a user with editor permissions to execute OS commands on a remote server.
© 2024 Packet Storm. All rights reserved.