CVE-2021-29440
8.4
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
Summary
Grav is a file based Web-platform. Twig processing of static pages can be enabled in the front matter by any administrative user allowed to create or edit pages. As the Twig processor runs unsandboxed, this behavior can be used to gain arbitrary code execution and elevate privileges on the instance. The issue was addressed in version 1.7.11.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| getgrav | grav | < 1.7.11 | affected |
Weaknesses
- CWE-94: {"CWE-94":"Improper Control of Generation of Code ('Code Injection')"}
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/getgrav/grav/security/advisories/GHSA-g8r4-p96j-xfxc
- https://packagist.org/packages/getgrav/grav
- http://packetstormsecurity.com/files/162987/Grav-CMS-1.7.10-Server-Side-Template-Injection.html
- https://blog.sonarsource.com/grav-cms-code-execution-vulnerabilities
References
- https://github.com/getgrav/grav/security/advisories/GHSA-g8r4-p96j-xfxc
- https://packagist.org/packages/getgrav/grav
- http://packetstormsecurity.com/files/162987/Grav-CMS-1.7.10-Server-Side-Template-Injection.html
- https://blog.sonarsource.com/grav-cms-code-execution-vulnerabilities
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.