CVE-2025-65186

Publication date

2025-12-02 00:00:00

Family

mitre

State

PUBLISHED

Description

Grav CMS 1.7.49 is vulnerable to Cross Site Scripting (XSS). The page editor allows authenticated users to edit page content via a Markdown editor. The editor fails to properly sanitize