CVE-2025-8517 Information

Aug 05, 2025 cve

Description

A vulnerability was found in givanz Vvveb 1.0.6.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to session fixiation. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 1.0.7 is able to address this issue. The patch is named d4b1e030066417b77d15b4ac505eed5ae7bf2c5e. It is recommended to upgrade the affected component.

Reference

https://github.com/givanz/Vvveb/issues/312 https://github.com/givanz/Vvveb/issues/312#issuecomment-2977995664 https://github.com/givanz/Vvveb/releases/tag/1.0.7 https://github.com/helloandrewpaul/Session-Fixation-in-Vvveb-CMS-v1.0.6.1 https://vuldb.com/?ctiid.318643 https://vuldb.com/?id.318643 https://vuldb.com/?submit.623135 https://github.com/givanz/Vvveb/commit/d4b1e030066417b77d15b4ac505eed5ae7bf2c5e https://github.com/givanz/Vvveb/issues/312

CNNVD-202508-226 (Published: 2025-08-04)

Share on:

CVE-2025-8517 Information

Description

Reference

Related CNNVD