CVE-2025-67084

Exploit

EPSS 0.4%
Veröffentlicht 15.01.2026 15:15:51
Zuletzt bearbeitet 22.01.2026 16:03:34
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

File upload vulnerability in InvoicePlane through 1.6.3 allows authenticated attackers to upload arbitrary PHP files into attachments, which can later be executed remotely, leading to Remote Code Execution (RCE).

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 5

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Invoiceplane ≫ Invoiceplane Version < 1.6.4

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.4%	0.316

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	9.9	3.1	6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-616 Incomplete Identification of Uploaded File Variables (PHP)

The PHP application uses an old method for processing uploaded files by referencing the four global variables that are set for each file (e.g. $varname, $varname_size, $varname_name, $varname_type). These variables could be overwritten by attackers, causing the application to process unauthorized files.

https://github.com/InvoicePlane/InvoicePlane

Product

https://www.helx.io/blog/advisory-invoice-plane/

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2025-67084

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-67084

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-67084

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-67084