Security
Headlines
HeadlinesLatestCVEs

Headline

Grav CMS 1.7.44 Server-Side Template Injection

GenGravSSTIExploit is a proof of concept Python script that exploits an authenticated server-side template injection (SSTI) vulnerability in Grav CMS versions 1.7.44 and below. This vulnerability allows a user with editor permissions to execute OS commands on a remote server.

Packet Storm
#vulnerability#auth

© 2024 Packet Storm. All rights reserved.

Packet Storm: Latest News

Red Hat Security Advisory 2024-8690-03