CVE-2025-61183 Blast Radius

MEDIUM • CVSS 6.1Cross Site Scripting in vaahcms v.2.3.1 allows a remote attacker to execute arbitrary code via upload method in the storeAvatar() method of UserBase.p

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2025-61183.

Start Free Scan →← Back to CVE-2025-61183