CVE-2025-46000 | THREATINT

Description

An arbitrary file upload vulnerability in the component /rsc/filemanager.rsc.class.php of Filemanager commit c75b914 v.2.5.0 allows attackers to execute arbitrary code via uploading a crafted SVG file.

PUBLISHED Reserved 2025-04-22 | Published 2025-07-18 | Updated 2025-07-18 | Assigner mitre

References

github.com/simogeo/Filemanager

github.com/simogeo/Filemanager/commit/c75b914

github.com/...ist/blob/main/CVE-2025-46000/CVE-2025-46000.md

cve.org (CVE-2025-46000)

nvd.nist.gov (CVE-2025-46000)

Download JSON