CVE-2025-67084
Unknown Unknown - Not Provided

BaseFortify

Vulnerability report for CVE-2025-67084, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-01-15

Last updated on: 2026-01-15

Assigner: MITRE

Description

File upload vulnerability in InvoicePlane through 1.6.3 allows authenticated attackers to upload arbitrary PHP files into attachments, which can later be executed remotely, leading to Remote Code Execution (RCE).

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-01-15
Last Modified
2026-01-15
Generated
2026-07-06
AI Q&A
2026-01-16
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 2 associated CPEs
Vendor Product Version / Range
invoiceplane invoiceplane to 1.6.4 (exc)
invoiceplane invoiceplane From 1.6.4 (inc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-616 The PHP application uses an old method for processing uploaded files by referencing the four global variables that are set for each file (e.g. $varname, $varname_size, $varname_name, $varname_type). These variables could be overwritten by attackers, causing the application to process unauthorized files.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is a file upload flaw in InvoicePlane version 1.6.3 that allows authenticated attackers to upload arbitrary PHP files as attachments. These uploaded PHP files can then be executed remotely, resulting in Remote Code Execution (RCE) on the server.

Impact Analysis

The vulnerability can allow an attacker with authentication to execute arbitrary code on the server hosting InvoicePlane by uploading and running malicious PHP files. This can lead to unauthorized control over the server, data compromise, and potentially further attacks within the network.

Mitigation Strategies

To mitigate this vulnerability, immediately upgrade InvoicePlane to a version later than 1.6.3 where the file upload vulnerability is fixed. Additionally, restrict authenticated user permissions to prevent arbitrary file uploads and monitor uploaded attachments for suspicious PHP files. [1]

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-67084. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart