CVE-2026-42611 | getgrav up to 2.0.0-beta.1 SVG Element /admin/config/info cross site scripting

A vulnerability classified as problematic has been found in getgrav grav up to 2.0.0-beta.1. This issue affects some unknown processing of the file /admin/config/info of the component SVG Element Handler. This manipulation causes cross site scripting.

This vulnerability is handled as CVE-2026-42611. The attack can be initiated remotely. There is not any exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More