XSS in Getgrav Grav-plugin-admin

CVE-2026-44737

grav-plugin-admin is the admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages. Prior to 1.10.49.5, the application fails to properly validate and sanitize user…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.001 (18.0th percentile) — read the EPSS interpretation.