A cross-site scripting (XSS) vulnerability in Grav versions 1.7.44 and before, allows remote authenticated malicious users to execute arbitrary web scripts or HTML via the onmouseover attribute of an ISINDEX element.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
getgrav grav |