← Back

Chatvia

chatvia

Vendor: Themesbrand • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-40514
1Themesbrand
1Chatvia
Sep 30, 2025
Jan 16, 2025
N/A· v4
4.6 MEDIUM· v3
N/A· v2
Insecure Permissions vulnerability in themesebrand Chatvia v.5.3.2 allows a remote attacker to escalate privileges via the User profile name and image upload functions.
CVE-2024-40513
1Themesbrand
1Chatvia
Sep 30, 2025
Jan 16, 2025
N/A· v4
4.6 MEDIUM· v3
N/A· v2
An issue in themesebrand Chatvia v.5.3.2 allows a remote attacker to execute arbitrary code via the User profile Upload image function.