Vulners
Lucene search
CVE-2025-8518
ποΈΒ 04 Aug 2025Β 17:02:06Reported byΒ VulDBTypeΒ 
Β cveπΒ web.nvd.nist.govπΒ 24Β Viewsπ WEB
| Reporter | Title | Published | Views | Family All 14 |
|---|---|---|---|---|
 | Exploit for Injection in Vvveb | 29 Sep 202516:51 | β | githubexploit |
 | CVE-2025-8518 | 29 Sep 202516:59 | β | circl |
 | Vvveb 注ε ₯ζΌζ΄ | 4 Aug 202500:00 | β | cnnvd |
 | CVE-2025-8518 givanz Vvveb Code Editor code.php save code injection | 4 Aug 202517:02 | β | cvelist |
 | EUVD-2025-23521 | 3 Oct 202520:07 | β | euvd |
 | Remote Code Execution Vulnerability in Vvveb | 22 Oct 202518:54 | β | metasploit |
 | CVE-2025-8518 | 4 Aug 202517:15 | β | nvd |
 | π Vvveb CMS 1.0.5 Remote Code Execution | 22 Oct 202500:00 | β | packetstorm |
| π Vvveb CMS 1.0.5 Insecure Direct Object Reference | 10 Mar 202600:00 | β | packetstorm |
| π Vvveb CMS 1.0.5 Command Injection | 11 Mar 202600:00 | β | packetstorm |
10
[
{
"vendor": "givanz",
"product": "Vvveb",
"versions": [
{
"version": "1.0.5",
"status": "affected"
},
{
"version": "1.0.6",
"status": "unaffected"
}
],
"modules": [
"Code Editor"
]
}
]| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| module | query param | admin/index.php | Code execution via unsanitized edits: loadFile/save actions in editor/code (themes) endpoint | CWE-74,Β CWE-94 |
| action | query param | admin/index.php | Code execution via unsanitized edits: loadFile/save actions in editor/code (themes) endpoint | CWE-74,Β CWE-94 |
| type | query param | admin/index.php | Code execution via unsanitized edits: loadFile/save actions in editor/code (themes) endpoint | CWE-74,Β CWE-94 |
| file | query param | admin/index.php | Code execution via unsanitized edits: loadFile/save actions in editor/code (themes) endpoint | CWE-74,Β CWE-94 |
| module | query param | admin/index.php | Trigger payload via editor interface to load and execute code | CWE-74,Β CWE-94 |
| action | query param | admin/index.php | Trigger payload via editor interface to load and execute code | CWE-74,Β CWE-94 |
| url | query param | admin/index.php | Trigger payload via editor interface to load and execute code | CWE-74,Β CWE-94 |
| template | query param | admin/index.php | Trigger payload via editor interface to load and execute code | CWE-74,Β CWE-94 |
Data
Build on a solid foundation withΒ Vulners data
WeΒ provide theΒ essential building blocks forΒ cybersecurity solutions withΒ comprehensive, structured, andΒ constantly updated vulnerability andΒ exploits data
Api
Power your application withΒ Vulners API
The Vulners REST API offers reliable, high-performance access toΒ vulnerabilityΒ intelligence, withΒ 99.9%Β SLAΒ uptime andΒ CDN-backed data delivery forΒ seamlessΒ global access
App
Assess and manage vulnerabilities withΒ VulnersΒ tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
17 Jun 2026 10:07Current
5.6Medium risk
Vulners AI Score5.6
CVSS 3.14.7 - 7.2
CVSS 45.1
CVSS 25.8
CVSS 34.7
EPSS0.01347
SSVC