CVE-2021-3818: Reliance on Cookies without Validation and Integrity Checking in getgrav/grav
First published: Mon Sep 27 2021(Updated: )
grav is vulnerable to Reliance on Cookies without Validation and Integrity Checking
Credit: security@huntr.dev
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Getgrav Grav | <1.7.22 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this grav vulnerability?
The vulnerability ID for this grav vulnerability is CVE-2021-3818.
What is the severity of CVE-2021-3818?
The severity of CVE-2021-3818 is medium with a severity value of 5.3.
How does CVE-2021-3818 affect the grav software?
CVE-2021-3818 affects the grav software by allowing reliance on cookies without validation and integrity checking.
Which version of the grav software is affected by CVE-2021-3818?
The version of the grav software affected by CVE-2021-3818 is up to exclusive version 1.7.22.
How can I fix CVE-2021-3818?
To fix CVE-2021-3818, update the grav software to a version higher than 1.7.22.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/author
- agent/remedy
- agent/last-modified-date
- agent/title
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/getgrav
- canonical/getgrav grav