CVE-2025-34046 | THREATINT

Description

An unauthenticated file upload vulnerability exists in the Fanwei E-Office <= v9.4 web management interface. The vulnerability affects the /general/index/UploadFile.php endpoint, which improperly validates uploaded files when invoked with certain parameters (uploadType=eoffice_logo or uploadType=theme). An attacker can exploit this flaw by sending a crafted HTTP POST request to upload arbitrary files without requiring authentication. Successful exploitation could enable remote code execution on the affected server, leading to complete compromise of the web application and potentially the underlying system. Exploitation evidence was observed by the Shadowserver Foundation on 2025-02-05 UTC.

PUBLISHED Reserved 2025-04-15 | Published 2025-06-26 | Updated 2026-05-14 | Assigner VulnCheck

CRITICAL: 10.0CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Problem types

CWE-434 Unrestricted Upload of File with Dangerous Type

Product status

Default status

unaffected

Any version

affected

References

www.cnvd.org.cn/flaw/show/CNVD-2021-49104 third-party-advisory

github.com/...ice-fileupload/blob/main/eoffice_fileupload.py exploit

vulncheck.com/advisories/fanwei-eoffice-file-upload third-party-advisory

github.com/.../blob/main/http/cnvd/2021/CNVD-2021-49104.yaml exploit

cve.org (CVE-2025-34046)

nvd.nist.gov (CVE-2025-34046)

Download JSON