Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
| # | POC Description | Source Link | Shenlong Link |
|---|
No public POC found.
Login to generate AI POC| CVE-2026-61451 | 9.6 CRITICAL | Grav before 1.0.4 Password Reset Token Poisoning via admin_base_url |
| CVE-2026-58655 | 8.8 HIGH | Grav Flex Objects - Server-Side Template Injection via Dynamic Titles |
| CVE-2026-61457 | 8.8 HIGH | Grav before 1.0.3 Remote Code Execution via File Upload Extension Bypass |
| CVE-2026-61873 | 8.1 HIGH | Grav before 9.1.8 Arbitrary File Write via Twig-Processed Filename |
| CVE-2026-61449 | 6.5 MEDIUM | Grav before 2.0.2 Decompression Bomb via Forged ZIP Size |
| CVE-2026-61452 | 5.3 MEDIUM | Grav before 2.0.4 Improper Session Invalidation JWT Access Tokens |
No comments yet