VIR Vulnerability Intelligence Relay

Package impact

php COMPOSER / getgrav/grav

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-42610 medium 6.5 6.5 23d ago Grav Vulnerable to Sensitive Information Disclosure via Accounts Service Bypass php
CVE-2026-44737 medium 5.5 20d ago Grav: Stored XSS via page title (data[header][title]) in admin panel php
CVE-2026-42612 medium 5.4 5.4 23d ago Grav Vulnerable to Publisher-Level Stored XSS via Unquoted Event Attributes php
CVE-2026-42842 medium 5.4 5.4 23d ago Grav Vulnerable to XSS via Taxonomy Field Values in Admin Panel php
CVE-2026-7317 medium 5.0 5.0 23d ago Grav has Insecure Deserialization in File Cache php
CVE-2026-42841 medium 4.8 4.8 23d ago Grav CMS vulnerable to stored XSS via Markdown media attribute() action php