CVE-2026-44737 | getgrav grav-plugin-admin up to 1.10.49.5 URL cross site scripting (GHSA-fmg2-f5r9-24qc)

A vulnerability classified as problematic has been found in getgrav grav-plugin-admin up to 1.10.49.5. Affected by this vulnerability is an unknown functionality of the component URL Handler. This manipulation causes cross site scripting.

This vulnerability is registered as CVE-2026-44737. Remote exploitation of the attack is possible. No exploit is available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More