CVE-2025-66312 | grav up to 1.10.x Admin Plugin cross site scripting (GHSA-rmw5-f87r-w988)

A vulnerability was found in grav up to 1.10.x and classified as problematic. This affects an unknown function of the component Admin Plugin. Executing manipulation can lead to cross site scripting.

This vulnerability is handled as CVE-2025-66312. The attack can be executed remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More