2 matches found
CVE-2025-9397 givanz Vvveb media.php unrestricted upload
A weakness has been identified in givanz Vvveb up to 1.0.7.2. Affected is an unknown function of the file /system/traits/media.php. Executing manipulation of the argument files can lead to unrestricted upload. The attack can be launched remotely. The exploit has been made available to the public...
CVE-2025-9397
CVE-2025-9397 affects givanz Vvveb up to 1.0.7.2. The flaw resides in /system/traits/media.php, where manipulating the files[] argument can cause unrestricted file uploads. This enables remote exploitation with publicly available exploits. A patch is advised; the code maintainer indicates a fix a...