CNNVD-202509-4083 Information

CNNVD ID

CNNVD-202509-4083

Related CVE

CVE-2025-11027

• CNNVD Published: 2025-09-26

Description (Chinese)

Vvveb是Givan个人开发者的一个强大且易于使用的CMS，用于构建网站、博客或电子商务商店。 Vvveb 1.0.7.2及之前版本存在安全漏洞，该漏洞源于组件SVG File Handler存在未知功能问题，可能导致跨站脚本攻击。

Description (English)

Vvveb is a powerful and easy-to-use CMS for Givan personal developers to build a website, blog or e-commerce store. Vvveb 1.0.7.2 and previous versions had a security loophole, which stemmed from an unknown functional problem with component SVG File Handler, which could lead to a cross-site script attack.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

LitexMedia

Published

2025-09-26

Last Modified

2026-02-24

References

https://gist.github.com/KhanMarshaI/b90045ee823866a52f33615776b5a6ec https://vuldb.com/?ctiid.325965 https://vuldb.com/?id.325965 https://vuldb.com/?submit.657184 https://access.redhat.com/security/cve/cve-2025-11027