Grav CMS Patches Deserialization Vulnerability
A deserialization vulnerability, tracked as CVE-2026-7317, has been discovered in specific versions of Grav CMS. This flaw, located within the FileCache::doGet function, could potentially enable remote attackers to manipulate data. Users of affected versions are recommended to upgrade to version 2.0.0-beta.2 to resolve the issue.
Want more?
Open NewsSnap.ai for the full app experience, including audio, personalization, and more news tools.