- Description
- An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution.This issue affects ShowDoc: before 2.8.7.
- Source
- disclosure@vulncheck.com
- NVD status
- Awaiting Analysis
CVSS 4.0
- Type
- Secondary
- Base score
- 9.4
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- CRITICAL
- disclosure@vulncheck.com
- CWE-434
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
3
Attackers target unpatched ShowDoc servers via CVE-2025-0520 https://t.co/TH5d10baro
@hackplayers
14 Apr 2026
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[Security Affairs] Attackers target unpatched ShowDoc servers via CVE-2025-0520. A critical RCE flaw, tracked as CVE-2025-0520, in ShowDoc is being actively exploited, putting unpatched servers at serious risk. A critical remote code execution flaw,... https://t.co/We8uoLlrlj
@shah_sheikh
14 Apr 2026
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Attackers target unpatched ShowDoc servers via CVE-2025-0520: A critical RCE flaw, tracked as CVE-2025-0520, in ShowDoc is being actively exploited, putting unpatched servers at serious risk. A critical remote code execution flaw, tracked asโฆ https://t.co/paTdoIX8J4 https://t.c
@shah_sheikh
14 Apr 2026
18 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Attackers target unpatched #ShowDoc servers via CVE-2025-0520 https://t.co/pz3jr1wv64 #securityaffairs #hacking
@securityaffairs
14 Apr 2026
58 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
==== ๐๏ธ ==== Security Alert ๐ ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers A critical security... https://t.co/9nwZDQWB5L ID: 0e9a1cd652c8 #CyberAttack #InfoSec #DataBreach ================
@MonstersRunAll
14 Apr 2026
35 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers https://t.co/VENDNpoa7d
@Dinosn
14 Apr 2026
634 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited https://t.co/Ha0oNjgzVH https://t.co/MjPi4BICtZ
@devsecopscv
14 Apr 2026
24 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
๐จ #CVE-2025-0520: Unauthenticated Web Shell Uploads Exploited in the Wild โ Patch Now! + Video https://t.co/oQ2JEriLbo Educational Purposes!
@UndercodeUpdate
14 Apr 2026
39 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers https://t.co/SIud78yEX7
@TheCyberSecHub
14 Apr 2026
355 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers https://t.co/GVSiCdm8a1
@pigram86
14 Apr 2026
44 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
๐จ BREAKING: Critical RCE flaw CVE-2025-0520 in ShowDoc is actively exploited on unpatched servers. This vulnerability, with a CVSS score of 9.4, poses significant risks to document management systems. Immediate patching is advised. #CyberSecurity #BreakingNews https://t.co/aAR
@NewsNerdie
14 Apr 2026
29 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers https://t.co/bp7uT2JOOo
@molari999
14 Apr 2026
39 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers https://t.co/Fyomliiu5J
@wvipersg
14 Apr 2026
34 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
๐New VulnCheck KEV: Our Canaries detected first-time exploitation of CVE-2025-0520, an unauth file upload bug in open-source Chinese doc management software ShowDoc. The VulnCheck-observed exploit drops a webshell. ๐ There are 2K+ instances online, primarily in China. htt
@catc0n
11 Apr 2026
4492 Impressions
11 Retweets
46 Likes
19 Bookmarks
3 Replies
0 Quotes
CVE-2025-0520 04/29/2025 08:15:25 PM BaseSeverity: CRITICAL An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution.Thi... https://t.co/yykNjdD37k
@CVETracker
30 Apr 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
๐จ CVE-2025-0520 โ ๏ธ๐ด CRITICAL (9.4) ๐ข ShowDoc - ShowDoc ๐๏ธ 0 ๐ https://t.co/4XxVtBDaya ๐ https://t.co/AKlSeXAsel ๐ https://t.co/GN3EyL0lj7 #CyberCron #VulnAlert #InfoSec https://t.co/yVWnGlIPFU
@cybercronai
30 Apr 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-0520: Unrestricted file upload
@centry_agent
30 Apr 2025
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cyber security alert: CVE-2025-4080 and CVE-2025-0520 may compromise data
@centry_agent
30 Apr 2025
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-0520: CRITICAL] ShowDoc before 2.8.7 is vulnerable to a file upload flaw enabling remote code execution due to improper validation of file extensions. Ensure system security.#cve,CVE-2025-0520,#cybersecurity https://t.co/9nVThDDI9B https://t.co/jJgeZj7Mz1
@CveFindCom
29 Apr 2025
30 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-0520 An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code executionโฆ https://t.co/261AJnFMSO
@CVEnew
29 Apr 2025
464 Impressions
0 Retweets
0 Likes
0 Bookmarks
4 Replies
0 Quotes