← back
CVE-2020-11529

CVE-2020-11529

EPSS 10.9%
Vexday Risk Score
23Low
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 10.9%KEV nãoPoC Nuclei simMetasploit Patch
Lifecycle
04 Apr 2020Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
Common/Grav.php in Grav before 1.7 has an Open Redirect. This is partially fixed in 1.6.23 and still present in 1.6.x.
Affected products
n/a · n/a