CVE-2024-25183

givanz VvvebJs 1.7.2 is vulnerable to Directory Traversal via scan.php.

high 7.5 CVSS 3.1
Published: Dec 29, 2025
Modified: Jan 2, 2026
Vendor: Vvveb
Product: Vvvebjs
Versions: 1.7.2

Description

givanz VvvebJs 1.7.2 is vulnerable to Directory Traversal via scan.php.

References

Related CVEs

CVE-2024-27480 critical · 9.8
givanz VvvebJs 1.7.2 is vulnerable to Insecure File Upload.
CVE-2024-25182 critical · 9.8
givanz VvvebJs 1.7.2 suffers from a File Upload vulnerability via save.php.
CVE-2024-25181 critical · 9.1
A critical vulnerability has been identified in givanz VvvebJs 1.7.2, which allows both Server-Side Request Forgery (SSRF) and arbitrary file reading. The vulnerability stems from