CVE-2025-50706
EPSS 4.4%ThinkPHP Path Traversal Vulnerability
Published: 8/5/2025Modified: 8/5/2025
Also known as:GHSA-mrwc-mvr8-9xq5
Description
An issue in ThinkPHP Framework v.5.1 allows a remote attacker to execute arbitrary code via the routecheck function.
Affected packages (1)
- Packagist/topthink/frameworkfrom 0, <= 5.1.41
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 4.0 | — | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |