Main Vulnerability Database Exploits ID:12693 - Exploit for Improper access control in Grav CMS - CVE-2025-66301

ID:12693 - Exploit for Improper access control in Grav CMS - CVE-2025-66301

Published: May 5, 2026

Vulnerability identifier: #VU130065

Vulnerability risk: Low

CVE-ID: CVE-2025-66301

CWE-ID: CWE-284

Exploitation vector: Remote access

Vulnerable software:
Grav CMS

Link to public exploit:

https://www.rapid7.com/db/modules/exploit/multi/http/grav_twig_ssti_sandbox_bypass_rce

Vulnerability description

The vulnerability allows a remote user to modify form processing actions.

The vulnerability exists due to improper access control in /admin/pages/{page_name} when handling crafted POST requests that modify data[_json][header][form]. A remote user can send a specially crafted request to modify form processing actions.

Exploitation requires the Admin and Form plugins to be installed.

Remediation

Install security update from vendor's website.

ID:12693 - Exploit for Improper access control in Grav CMS - CVE-2025-66301

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human