CVE-2024-28116
Server-Side Template Injection (SSTI) with Grav CMS security sandbox bypass
In short
Grav CMS versions before 1.7.45 allow authenticated users with editor permissions to inject malicious code into templates, bypassing security protections and executing arbitrary code on the server.
Technical detail
Server-Side Template Injection (SSTI) vulnerability in Grav CMS prior to 1.7.45 allows authenticated users with editor-level permissions to break out of the template sandbox and achieve remote code execution. The attack vector exploits improper template processing that fails to enforce sandbox restrictions, enabling arbitrary code execution with server privileges.
Summary generated and translated by AI from the official description.
Grav is an open-source, flat-file content management system. Grav CMS prior to version 1.7.45 is vulnerable to a Server-Side Template Injection (SSTI), which allows any authenticated user (editor permissions are sufficient) to execute arbitrary code on the remote server bypassing the existing security sandbox. Version 1.7.45 contains a patch for this issue.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
getgrav · gravWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →