Incomplete Identification of Uploaded File Variables (PHP)

CVE-2025-52130

Medium

5.4/10

Summary

File upload vulnerability in WebErpMesv2 1.17 in the app/Http/Controllers/FactoryController.php controller. This flaw allows an authenticated attacker to upload arbitrary files, including PHP scripts, which can be accessed via direct GET requests, potentially resulting in remote code execution (RCE) on the web server.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: LOW
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: LOW
Availability Impact: NONE

CWE-616 - Incomplete Identification of Uploaded File Variables (PHP)

The PHP application uses an old method for processing uploaded files by referencing the four global variables that are set for each file (e.g. $varname, $varname_size, $varname_name, $varname_type). These variables could be overwritten by attackers, causing the application to process unauthorized files.

References

Advisory Timeline

Published Aug 25, 2025

Incomplete Identification of Uploaded File Variables (PHP)

CVE-2025-52130

Summary

CWE-616 - Incomplete Identification of Uploaded File Variables (PHP)

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS