CVE-2025-46000 Information

Description

An arbitrary file upload vulnerability in the component /rsc/filemanager.rsc.class.php of Filemanager commit c75b914 v.2.5.0 allows attackers to execute arbitrary code via uploading a crafted SVG file.

Reference

https://github.com/simogeo/Filemanager https://github.com/simogeo/Filemanager/commit/c75b914 https://github.com/zakumini/CVE-List/blob/main/CVE-2025-46000/CVE-2025-46000.md

Related CNNVD

CNNVD-202507-2376 (Published: 2025-07-18)