CVE-2026-59190 - Grav Admin Plugin — IDOR Privilege Escalation via saveUser()
CVE ID :CVE-2026-59190 Published : July 10, 2026, 5:17 p.m. | 1 hour, 15 minutes ago Description :grav-plugin-admin is an HTML user interface that provides a way to configure Grav and create and modify pages. In 1.10.52 and earlier, an authenticated attacker with admin.users permission can...