Cross Site Scripting vulnerability in grav v.1.7.48, v.1.7.47 and v.1.7.46 allows an attacker to execute arbitrary code via the onerror attribute of the img element
{ "versions": [ { "introduced": "1.7.46" }, { "last_affected": "1.7.48" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-46198.json"