CVE-2026-61449 | getgrav Grav up to 2.0.1 ZipArchiver extractTo size unrestricted upload

SecurityVulns

A vulnerability classified as problematic has been found in getgrav Grav up to 2.0.1. Affected is the function extractTo of the component ZipArchiver. The manipulation of the argument size leads to unrestricted upload.

This vulnerability is documented as CVE-2026-61449. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More