VYPR
Unrated severityNVD Advisory· Published Aug 31, 2025· Updated Sep 2, 2025

givanz Vvveb login.tpl cross site scripting

CVE-2025-9728

Description

A security vulnerability has been detected in givanz Vvveb 1.0.7.2. This affects an unknown part of the file app/template/user/login.tpl. Such manipulation of the argument Email/Password leads to cross site scripting. The attack can be executed remotely. The name of the patch is bbd4c42c66ab818142240348173a669d1d2537fe. Applying a patch is advised to resolve this issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Givanz/Vvvebllm-fuzzy2 versions
    <=1.0.7.2+ 1 more
    • (no CPE)range: <=1.0.7.2
    • (no CPE)range: 1.0.7.2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.