Getgrav Grav-plugin-admin — known CVE vulnerabilities
Every CVE whose affected-product data names Getgrav Grav-plugin-admin, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2021-21425 — CVSS 9.3 (critical): Grav Admin Plugin is an HTML user interface that provides a way to configure Grav and create and modify pages. In versions 1.10.7 and…
CVE-2025-66307 — CVSS 6.5 (medium): This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages…
CVE-2025-66309 — CVSS 6.1 (medium): This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages…
CVE-2025-66308 — CVSS 5.4 (medium): This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages…
CVE-2025-66310 — CVSS 5.4 (medium): This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages…
CVE-2025-66311 — CVSS 5.4 (medium): This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages…
CVE-2025-66312 — CVSS 5.4 (medium): This admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages…
CVE-2021-3920 — CVSS 5.4 (medium): grav-plugin-admin is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')