CNNVD-202508-253 Information
Aug 04, 2025
cve
CNNVD ID
CNNVD-202508-253
Related CVE
- CNNVD Published: 2025-08-04
Description (Chinese)
VvvebJs是Givan个人开发者的一个拖放网站生成器。 VvvebJs 2.0.4及之前版本存在安全漏洞,该漏洞源于对参数File的错误操作导致路径遍历。
Description (English)
VvvebJs is a drag-and-drop site generator for Givan personal developers. There is a security loophole in VvvebJs 2.0.4 and earlier versions, which stems from an error in the operation of the parameter File that caused the path to pass.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2025-08-04
Last Modified
2026-02-24
References
https://vuldb.com/?submit.616993 https://vuldb.com/?id.318648 https://github.com/givanz/VvvebJs/issues/409 https://github.com/givanz/VvvebJs/issues/409#issue-3235569867 https://vuldb.com/?ctiid.318648 https://access.redhat.com/security/cve/cve-2025-8522 https://nvd.nist.gov/vuln/detail/CVE-2025-8522
Share on: