Grav · Grav · CVE-2025-46199
**Name of the Vulnerable Software and Affected Versions**
grav versions prior to 1.7.49
**Description**
A Cross Site Scripting issue exists in grav versions prior to 1.7.49. This allows an attacker to execute arbitrary code via a crafted script to the form fields.
**Recommendations**
Update to grav version 1.7.49 or later.