Submit #673159: givanz Vvveb 1.0.7.3 Path traversalinfo

Titlegivanz Vvveb 1.0.7.3 Path traversal
DescriptionVvveb CMS version x.x.x.x contains an authenticated arbitrary file disclosure vulnerability in the code editor functionality. An authenticated administrator can read arbitrary files by manipulating the file parameter in the loadFile action.
Source⚠️ https://github.com/givanz/Vvveb/issues/333
User
 Huu1j (UID 91525)
Submission10/11/2025 06:15 (8 months ago)
Moderation10/25/2025 08:27 (14 days later)
StatusAccepted
VulDB entry329873 [givanz Vvveb up to 1.0.7.3 Code Editor system/functions.php sanitizeFileName File path traversal]
Points17

PreviousOverviewNext

Want to know what is going to be exploited?

We predict KEV entries!