CVE-2026-34428 | givanz Vvveb up to 1.0.8.0 file URL getUrl server-side request forgery

April 20, 2026 Yanac

A vulnerability was found in givanz Vvveb up to 1.0.8.0. It has been declared as critical. Impacted is the function getUrl of the component file URL Handler. The manipulation results in server-side request forgery.

This vulnerability was named CVE-2026-34428. The attack may be performed from remote. There is no available exploit.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More