CVE-2025-8522 | givanz Vvvebjs up to 2.0.4 node.js /save.php File path traversal (Issue 409)

Inserito da Angelo Barbosa | Ago 4, 2025 | CVE

A vulnerability, which was classified as critical, was found in givanz Vvvebjs up to 2.0.4. Affected is an unknown function of the file /save.php of the component node.js. The manipulation of the argument File leads to path traversal.

This vulnerability is traded as CVE-2025-8522. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-8522 | givanz Vvvebjs up to 2.0.4 node.js /save.php File path traversal (Issue 409)

Post correlati

CVE-2024-5601 | Mediavine Create Plugin up to 1.9.7 on WordPress Schema Meta Shortcode cross site scripting

CVE-2024-12413 | MarketKing Plugin up to 2.0.00 on WordPress authorization

CVE-2025-8382 | Campcodes Online Hotel Reservation System 1.0 /admin/edit_room.php room_id sql injection

CVE-2025-0929 | Lewe TeamCal Neo 3.8.2 /teamcal/src/index.php abs sql injection