PT-2025-31836 · Unknown · Givanz Vvveb

0Xhamy

Published

2025-08-04

Updated

2025-08-04

CVE-2025-8518

Report an issue

CVSS v2.0

5.8

Vector

AV:N/AC:L/Au:M/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions:

givanz Vvveb version 1.0.5

Description:

A critical issue exists in the `Save` function of the `admin/controller/editor/code.php` file within the Code Editor component. This manipulation can lead to code injection and may be launched remotely. The exploit has been publicly disclosed.

Recommendations:

Upgrade to version 1.0.6 to address this issue.

Exploit

Fix

Special Elements Injection

Code Injection

Weakness Enumeration

CWE-74CWE-94

Related Identifiers

CVE-2025-8518

Affected Products

Givanz Vvveb

PT-2025-31836 · Unknown · Givanz Vvveb

Weakness Enumeration

Related Identifiers

Affected Products

References · 10