Grav is a flat-file content management system. Prior to version 1.7.42, the patch for CVE-2022-2073, a server-side template injection vulnerability in Grav leveraging the default `filter()` function, did not block other built-in functions exposed by Twig's Core Extension that could be used to invoke arbitrary unsafe functions, thereby allowing for remote code execution. A patch in version 1.74.2 overrides the built-in Twig `map()` and `reduce()` filter functions in `system/src/Grav/Common/Twig/Extension/GravExtension.php` to validate the argument passed to the filter in `$arrow`.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2023-06-14T22:06:01.338Z
Updated: 2024-08-02T16:10:06.973Z
Reserved: 2023-06-06T16:16:53.558Z
Link: CVE-2023-34448
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-06-14T23:15:11.107
Modified: 2023-06-22T16:31:47.377
Link: CVE-2023-34448
Redhat
No data.