CVE-2026-42842 | getgrav grav/grav-plugin-form cross site scripting (GHSA-c2q3-p4jr-c55f)

May 11, 2026 Yanac

A vulnerability was found in getgrav grav and grav-plugin-form and classified as problematic. Impacted is an unknown function. The manipulation results in cross site scripting.

This vulnerability is known as CVE-2026-42842. It is possible to launch the attack remotely. No exploit is available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More

CVE-2026-38569 | HireFlow 1.2 candidate_detail.html cross site scripting
CVE-2026-41250 | taigaio taiga-front up to 6.9.0 cross site scripting (GHSA-fpm6-3pvx-3c46)