A vulnerability identified as problematic has been detected in getgrav Grav Plugin up to 2.0.3. Affected is an unknown function of the file /grav/admin of the component Admin2. This manipulation causes information disclosure.

This vulnerability is tracked as CVE-2026-61454. The attack is possible to be carried out remotely. No exploit exists.