Givanz Vvvebjs vulnerabilities
2 known vulnerabilities affecting givanz/vvvebjs.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2026-5615P4MEDIUMCVSS 4.3PoCv2.0.0v2.0.1+4 more2026-04-06
CVE-2026-5615 [MEDIUM] CWE-79 CVE-2026-5615: A weakness has been identified in givanz Vvvebjs up to 2.0.5. The affected element is an unknown fun
A weakness has been identified in givanz Vvvebjs up to 2.0.5. The affected element is an unknown function of the file upload.php of the component File Upload Endpoint. This manipulation of the argument uploadAllowExtensions causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been made available to the public and
nvd
CVE-2025-8522P4MEDIUMCVSS 5.0v2.0.0v2.0.1+3 more2025-08-04
CVE-2025-8522 [MEDIUM] CWE-22 CVE-2025-8522: A vulnerability, which was classified as critical, was found in givanz Vvvebjs up to 2.0.4. Affected
A vulnerability, which was classified as critical, was found in givanz Vvvebjs up to 2.0.4. Affected is an unknown function of the file /save.php of the component node.js. The manipulation of the argument File leads to path traversal. It is possible to launch the attack remotely. The complexity of an attack is rather high. The exploitability is told to
nvd