CVE-2024-25182

CRITICAL WAF: Medium
CVSS 9.8 Published: 2025-12-29
CWE-434 CWE-434

givanz VvvebJs 1.7.2 suffers from a File Upload vulnerability via save.php.

WAF Coverage Analysis

Unrestricted File Upload Medium WAF Coverage

OWASP: A04:2021 Insecure Design

930xxx - Local File Inclusion
Unrestricted File Upload Medium WAF Coverage

OWASP: A04:2021 Insecure Design

930xxx - Local File Inclusion

Affected Software

VendorProductVersion
vvvebvvvebjs1.7.2

References

Back to CVE Database