Grav is a content management system (CMS). Prior to version 1.7.43, users who may write a page may use the `frontmatter` feature due to insufficient permission validation and inadequate file name validation. This may lead to remote code execution. Version 1.7.43 fixes this issue.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-03-06T20:28:46.695Z
Updated: 2024-08-02T18:35:36.095Z
Reserved: 2024-02-28T15:14:14.214Z
Link: CVE-2024-27923
Vulnrichment
Updated: 2024-08-02T00:41:55.863Z
NVD
Status : Awaiting Analysis
Published: 2024-03-21T02:52:21.280
Modified: 2024-03-21T12:58:51.093
Link: CVE-2024-27923
Redhat
No data.