CVE-2025-46001 Information
Jul 19, 2025
cve
Description
An arbitrary file upload vulnerability in the is_allowed_file_type() function of Filemanager v2.3.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.
Reference
https://github.com/simogeo/Filemanager https://github.com/zakumini/CVE-List/blob/main/CVE-2025-46001/CVE-2025-46001.md https://www.exploit-db.com/exploits/38895
Related CNNVD
CNNVD-202507-2383 (Published: 2025-07-18)
Share on: