CVE-2023-34448

Name of the Vulnerable Software and Affected Versions Grav versions prior to 1.7.42

Description The issue concerns a server-side template injection vulnerability leveraging the default filter() function. This allows for remote code execution by invoking arbitrary unsafe functions through other built-in functions exposed by Twig's Core Extension. The estimated number of potentially affected devices worldwide is not specified. Details about real-world incidents where this issue was exploited are not provided. Technical details include the use of Twig's Core Extension and its built-in functions such as map() and reduce(). The filter() function and variables like $arrow are involved in the vulnerability.

Recommendations For versions prior to 1.7.42, update to version 1.7.42 or later, which includes a patch that overrides the built-in Twig map() and reduce() filter functions to validate the argument passed to the filter in $arrow.