CVE-2025-61183 | webreinvent vaahcms 2.3.1 UserBase.php storeAvatar cross site scripting (Issue 301)

A vulnerability was found in webreinvent vaahcms 2.3.1. It has been declared as problematic. The impacted element is the function storeAvatar of the file UserBase.php. Such manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2025-61183. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More