CVE-2025-67084
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2026-01-15

Last updated on: 2026-01-15

Assigner: MITRE

Description
File upload vulnerability in InvoicePlane through 1.6.3 allows authenticated attackers to upload arbitrary PHP files into attachments, which can later be executed remotely, leading to Remote Code Execution (RCE).
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-15
Last Modified
2026-01-15
Generated
2026-06-16
AI Q&A
2026-01-16
EPSS Evaluated
2026-06-15
NVD
CVE-2025-67084
EUVD
EUVD-2026-2785
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
invoiceplane invoiceplane to 1.6.4 (exc)
invoiceplane invoiceplane From 1.6.4 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-616 The PHP application uses an old method for processing uploaded files by referencing the four global variables that are set for each file (e.g. $varname, $varname_size, $varname_name, $varname_type). These variables could be overwritten by attackers, causing the application to process unauthorized files.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a file upload flaw in InvoicePlane version 1.6.3 that allows authenticated attackers to upload arbitrary PHP files as attachments. These uploaded PHP files can then be executed remotely, resulting in Remote Code Execution (RCE) on the server.

Impact Analysis

The vulnerability can allow an attacker with authentication to execute arbitrary code on the server hosting InvoicePlane by uploading and running malicious PHP files. This can lead to unauthorized control over the server, data compromise, and potentially further attacks within the network.

Mitigation Strategies

To mitigate this vulnerability, immediately upgrade InvoicePlane to a version later than 1.6.3 where the file upload vulnerability is fixed. Additionally, restrict authenticated user permissions to prevent arbitrary file uploads and monitor uploaded attachments for suspicious PHP files. [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-67084. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart