CVE-2025-46001

Published Jul 18, 2025

Last updated 8 hours ago

Overview

Description
An arbitrary file upload vulnerability in the is_allowed_file_type() function of Filemanager v2.3.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.
Source
cve@mitre.org
NVD status
Received

Social media

Hype score
Not currently trending

  1. CVE-2025-46001 An arbitrary file upload vulnerability in the is_allowed_file_type() function of Filemanager v2.3.0 allows attackers to execute arbitrary code via uploading a crafted… https://t.co/upHgOKPl7F

    @CVEnew

    18 Jul 2025

    322 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.