CVE-2025-65474

Description

An arbitrary file rename vulnerability in the /admin/manager.php component of EasyImages 2.0 v2.8.6 and below allows attackers to execute arbitrary code via renaming a PHP file to a SVG format.

PUBLISHED Reserved 2025-11-18 | Published 2025-12-11 | Updated 2025-12-18 | Assigner mitre

References

congsec.cn?id=20251103234511-9418dk9

gist.github.com/CongSec/3cf968621f71a7da35dcc9b8f0b29bb2

cve.org (CVE-2025-65474)

nvd.nist.gov (CVE-2025-65474)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.