CVE-2025-66296 | grav up to 1.8.0-beta.27 privileges assignment (GHSA-cjcp-qxvg-4rjm)

A vulnerability identified as critical has been detected in grav up to 1.8.0-beta.27. The impacted element is an unknown function. The manipulation leads to incorrect privilege assignment.

This vulnerability is listed as CVE-2025-66296. The attack may be initiated remotely. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More