Vivvo

vivvo

Vendor: Vivvo • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2009-3787 1Vivvo 1Vivvo Apr 23, 2026 Oct 26, 2009 N/A· v4 N/A· v3 5.0 MEDIUM· v2 files.php in Vivvo CMS 4.1.5.1 allows remote attackers to conduct directory traversal attacks and read arbitrary files via the file parameter with "logs/" in between two . (dot) characters, which is filtered into a "../"...Show more files.php in Vivvo CMS 4.1.5.1 allows remote attackers to conduct directory traversal attacks and read arbitrary files via the file parameter with "logs/" in between two . (dot) characters, which is filtered into a "../" sequence.Show less
CVE-2008-6801 1Vivvo 1Vivvo Apr 23, 2026 May 7, 2009 N/A· v4 N/A· v3 4.4 MEDIUM· v2 Cross-site request forgery (CSRF) vulnerability in Vivvo CMS before 4.0.4 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
CVE-2009-0466 1Vivvo 1Vivvo Apr 23, 2026 Feb 10, 2009 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in Vivvo CMS before 4.1.1 allows remote attackers to inject arbitrary web script or HTML via a URI that triggers a 404 Page Not Found response.