CVE-2025-34100
BaseFortify
Publication date: 2025-07-10
Last updated on: 2025-07-15
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| jquery | jquery_file_upload | * |
| elfinder | elfinder | 2.0 |
| builderengine | builderengine | 3.5.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-434 | The product allows the upload or transfer of dangerous file types that are automatically processed within its environment. |
| CWE-306 | The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. |
| CWE-20 | The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an unrestricted file upload issue in BuilderEngine 3.5.0 caused by improper integration of the elFinder 2.0 file manager and the jQuery File Upload plugin. The plugin does not properly validate or restrict file types or upload locations, allowing attackers to upload malicious .php files. This enables them to execute arbitrary PHP code on the server with the web server's privileges. The vulnerability is exploitable by unauthenticated users due to lack of access controls, resulting in full remote code execution.
How can this vulnerability impact me? :
This vulnerability can lead to full remote code execution on the affected server, allowing attackers to run arbitrary PHP code. This can result in complete compromise of the server, including data theft, data modification, service disruption, or using the server as a launch point for further attacks.