Miggo Logo
Miggo Vulnerability Database
CVE-2020-29553

CVE-2020-29553: Grav CMS Cross-Site Request Forgery (CSRF)

8.8

CVSS Score
3.1

Basic Information

CVE ID
CVE-2020-29553
GHSA ID
GHSA-fqff-vcvx-68h3
EPSS Score
0.36828%
CWE
CWE-352
Published
5/24/2022
Updated
4/24/2024
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
getgrav/gravcomposer>= 1.7.0-beta.1, <= 1.7.0-rc.17
getgrav/gravcomposer< 1.6.301.6.30

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from missing CSRF protection in scheduler task execution endpoints. AdminController::taskRunJob is the primary entry point for scheduler job execution in the admin interface, which would typically require CSRF validation(). The Scheduler::runJob function's direct command execution capability becomes dangerous when called without proper authorization checks. While exact code isn't available, Grav's architecture patterns and the vulnerability description strongly suggest these functions as the attack surface.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

T** S****ul*r in *r*v *MS t*rou** *.*.*-r*.** *llows *n *tt**k*r to *x**ut* * syst*m *omm*n* *y tri*kin* *n **min into visitin* * m*li*ious w**sit* (*SR*).

Reasoning

T** vuln*r**ility st*ms *rom missin* *SR* prot**tion in s****ul*r t*sk *x**ution *n*points. `**min*ontroll*r::t*skRunJo*` is t** prim*ry *ntry point *or s****ul*r jo* *x**ution in t** **min int*r****, w*i** woul* typi**lly r*quir* *SR* `v*li**tion()`