[HIGH] Grav vulnerable to Privilege Escalation in Grav Admin: Missing Username Uniqueness Check Allows Admin Account Takeover

PKSA-h4jv-pmqx-9phz CVE-2025-66296 GHSA-cjcp-qxvg-4rjm

Affected package: getgrav/grav

Affected version: <1.8.0-beta.27

Reported by:
GitHub