CVE-2025-57460
File Upload Vulnerability in Machsol MachPanel Enables Webshell Access
Publication date: 2025-12-29
Last updated on: 2025-12-29
Assigner: MITRE
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| machsol | machpanel | 8.0.32 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a file upload flaw in machsol machpanel version 8.0.32 that allows an attacker to upload malicious files, such as a webshell, to the server. This enables the attacker to execute arbitrary code or commands on the affected system.
How can this vulnerability impact me? :
An attacker exploiting this vulnerability can gain unauthorized access to the server by uploading a webshell, potentially leading to full system compromise, data theft, service disruption, or further attacks within the network.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
This vulnerability could lead to unauthorized access and data breaches, which may result in non-compliance with data protection regulations such as GDPR and HIPAA, potentially causing legal and financial consequences.