Known Vulnerabilities for Vvveb CMS by Vvveb
Listed below are 6 of the newest known vulnerabilities associated with "Vvveb CMS" by "Vvveb".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-39918 json | Vvveb prior to 1.0.8.1 contains a code injection vulnerability in the installation endpoint where the subdir POST parameter ... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-34429 json | Vvveb prior to 1.0.8.1 contains a stored cross-site scripting vulnerability that allows authenticated users with media uploa... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-34428 json | Vvveb prior to 1.0.8.1 contains a server-side request forgery vulnerability in the oEmbedProxy action of the editor/editor m... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-34427 json | Vvveb prior to 1.0.8.1 contains a privilege escalation vulnerability in the admin user profile save endpoint that allows aut... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-6257 json | Vvveb CMS v1.0.8 contains a remote code execution vulnerability in its media management functionality where a missing return ... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-6249 json | Vvveb CMS 1.0.8 contains a remote code execution vulnerability in its media upload handler that allows authenticated attacker... | Not Provided | 2026-04-20 | 2026-04-20 |