← Back

Vvveb

vvveb

23 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Vvveb
vvveb
16 CVEs
Vvvebjs
vvvebjs
7 CVEs

CVEs (23)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-44022
1Vvveb
1Vvveb
Jun 23, 2025
May 12, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
An issue in vvveb CMS v.1.0.6 allows a remote attacker to execute arbitrary code via the Plugin mechanism.
CVE-2024-29272
1Vvveb
1Vvvebjs
May 28, 2025
Mar 22, 2024
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Arbitrary File Upload vulnerability in VvvebJs before version 1.7.5, allows unauthenticated remote attackers to execute arbitrary code and obtain sensitive information via the sanitizeFileName parameter in save.php.
CVE-2024-29271
1Vvveb
1Vvvebjs
May 28, 2025
Mar 22, 2024
N/A· v4
6.1 MEDIUM· v3
N/A· v2
Reflected Cross-Site Scripting (XSS) vulnerability in VvvebJs before version 1.7.7, allows remote attackers to execute arbitrary code and obtain sensitive information via the action parameter in save.php.