CVE-2025-12203 | givanz Vvveb up to 1.0.7.3 Code Editor system/functions.php sanitizeFileName File path traversal (Issue 333)

A vulnerability was found in givanz Vvveb up to 1.0.7.3 and classified as critical. This issue affects the function sanitizeFileName of the file system/functions.php of the component Code Editor. Executing manipulation of the argument File can lead to path traversal.

This vulnerability is tracked as CVE-2025-12203. The attack can be launched remotely. Moreover, an exploit is present.

Applying a patch is advised to resolve this issue.VulDB Recent EntriesRead More