CRITICAL🇵🇱 Wersja polska

CVE-2025-50706

CVSS 9.8v3.1pub. 2025-08-05upd. 2025-08-14

An issue in thinkphp v.5.1 allows a remote attacker to execute arbitrary code via the routecheck function

🤖 AI Analysis
How it works

The vulnerability classified as CWE-94 (code injection) exists in the routecheck function of ThinkPHP v.5.1 framework. An attacker can provide specially crafted input data that is interpreted and executed as server-side code. The absence of data validation or filtering mechanisms in this function allows for injection and execution of arbitrary PHP code.

Impact

An attacker can gain full control over the application server — obtain access to sensitive data, modify application content, and potentially perform further actions in the infrastructure (lateral movement). The CVSS vector indicates high confidentiality, integrity, and availability impact on resources.

Mitigation & patch

Patches available from the vendor should be applied in accordance with references. Urgent update of the ThinkPHP framework to a version not containing the described vulnerability is recommended, and network access to applications based on this version should be restricted until the patch is implemented.

Who is affected

ThinkPHP v.5.1

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Thinkphp

    APP
    Thinkphp
    5.1.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2018-25270CRITICAL9.3PL ✓ten sam produkt

ThinkPHP 5.0.23 — zdalne wykonanie kodu przez parametr routingu (RCE)

CVE-2025-63888CRITICAL9.8PL ✓ten sam produkt

RCE w funkcji read sterownika szablonów ThinkPHP 5.0.24

CVE-2025-50707CRITICAL9.8PL ✓ten sam produkt

RCE w ThinkPHP 3 — wykonanie kodu przez komponent index.php

CVE-2024-48112CRITICAL9.8PL ✓ten sam produkt

ThinkPHP: RCE poprzez deserializację w Index.php (CVE-2024-48112)

CVE-2024-44902CRITICAL9.8PL ✓ten sam produkt

Krytyczna podatność deserialization RCE w ThinkPHP v6.1.3–v8.0.4