CVE-2026-11982 | Grav grav-plugin-api 1.7.52 Admin2 Pages API cross site scripting (GHSA-5wc5-7v9g-f7v6)

Inserito da Angelo Barbosa | Giu 18, 2026 | CVE

A vulnerability classified as problematic has been found in Grav grav-plugin-api 1.7.52. This affects an unknown function of the component Admin2 Pages API. This manipulation causes cross site scripting.

The identification of this vulnerability is CVE-2026-11982. It is possible to initiate the attack remotely. There is no exploit available.

To fix this issue, it is recommended to deploy a patch.

CVE-2026-11982 | Grav grav-plugin-api 1.7.52 Admin2 Pages API cross site scripting (GHSA-5wc5-7v9g-f7v6)

Post correlati

CVE-2024-47476 | Dell NetWorker Management Console 19.11 signature verification (dsa-2024-477)

CVE-2024-0322 | GPAC up to 2.2-DEV out-of-bounds

CVE-2024-41885 | Hanwha Vision XRN-420S up to 5.01.62 hard-coded, security-relevant constants

CVE-2024-2143 | Ultimate Addons for Beaver Builder Plugin up to 1.5.7 on WordPress Heading Widget cross site scripting