Vvvebjs
This hub aggregates every CVE we track for Vvvebjs, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
8
CVEs tracked
3
Critical
1
High
0
In CISA KEV
Severity distribution
MEDIUM4CRITICAL3HIGH1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
4
0
0
0
1
0
0
2024-072026-06
Latest CVEs
The 8 most recently published vulnerabilities affecting Vvvebjs.
- CVE-2026-5615givanz Vvvebjs File Upload Endpoint upload.php cross site scripting4.3
- CVE-2024-27480givanz VvvebJs 1.7.2 is vulnerable to Insecure File Upload.9.8
- CVE-2024-25182givanz VvvebJs 1.7.2 suffers from a File Upload vulnerability via save.php.9.8
- CVE-2024-25183givanz VvvebJs 1.7.2 is vulnerable to Directory Traversal via scan.php.7.5
- CVE-2024-25181A critical vulnerability has been identified in givanz VvvebJs 1.7.2, which allows both Server-Side Request Forgery (SSRF) and arbitrary file reading. The vulnerability stems from improper handling...9.1
- CVE-2025-8522givanz Vvvebjs node.js save.php path traversal5.0
- CVE-2024-29272Arbitrary File Upload vulnerability in VvvebJs before version 1.7.5, allows unauthenticated remote attackers to execute arbitrary code and obtain sensitive information via the sanitizeFileName para...6.5
- CVE-2024-29271Reflected Cross-Site Scripting (XSS) vulnerability in VvvebJs before version 1.7.7, allows remote attackers to execute arbitrary code and obtain sensitive information via the action parameter in sa...6.1
Product normalization is registry-driven with AI assist and human review. How it works