exploitDog

CVE-2025-44022

Опубликовано: 12 мая 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

An issue in vvveb CMS v.1.0.6 allows a remote attacker to execute arbitrary code via the Plugin mechanism.

Ссылки

https://github.com/chimmeee/vulnerability-research/blob/main/CVE-2025-44022
Third Party Advisory
https://github.com/givanz/Vvveb/commit/dd74abcae88f658779f61338b9f4c123884eef0d
Patch
https://github.com/givanz/Vvveb/issues/289
Exploit
Third Party Advisory
https://github.com/chimmeee/vulnerability-research/blob/main/CVE-2025-44022
Third Party Advisory
https://github.com/givanz/Vvveb/issues/289
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:vvveb:vvveb:1.0.6:*:*:*:*:*:*:*

EPSS

Процентиль: 82%

0.01746

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-94

Связанные уязвимости

GHSA-5cxg-299x-c7pc

CVSS3: 9.8

github

9 месяцев назад

An issue in vvveb CMS v.1.0.6 allows a remote attacker to execute arbitrary code via the Plugin mechanism.

EPSS

Процентиль: 82%

0.01746

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-94