CVE-2021-29440

getgrav/grav

on github

getgrav/grav

on packagist

Published

April 13, 2021

Severity

CVSS v3:

7.2 HIGH

CVSS v2:

6.5 MEDIUM

Description

Grav is a file based Web-platform. Twig processing of static pages can be enabled in the front matter by any administrative user allowed to create or edit pages. As the Twig processor runs unsandboxed, this behavior can be used to gain arbitrary code execution and elevate privileges on the instance. The issue was addressed in version 1.7.11.

References

https://packagist.org/packages/getgrav/grav
https://github.com/getgrav/grav/security/advisories/GHSA-g8r4-p96j-xfxc
http://packetstormsecurity.com/files/162987/Grav-CMS-1.7.10-Server-Side-Template-Injection.html
https://blog.sonarsource.com/grav-cms-code-execution-vulnerabilities

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:getgrav:grav::::::::	n/a	1.7.11	*

External Links

NVD - CVE-2021-29440