CVE-2018-20525

CRITICAL

Roxy Fileman 1.4.5 - Path Traversal via copydir.php, copyfile.php, and fileslist.php

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-20525. PoCs published by Pongtorn Angsuchotmetee_ Vittawat Masaree.

AI-analyzed exploit summary The exploit demonstrates path traversal and unrestricted file upload vulnerabilities in Roxy Fileman 1.4.5. Path traversal allows accessing arbitrary files via manipulated variables in copydir.php, copyfile.php, and fileslist.php. Unrestricted file upload enables uploading malicious files with double extensions (e.g., shellcode.php.png) if php.ini is configured with AddHandler php7-script .php.

Description

Roxy Fileman 1.4.5 allows Directory Traversal in copydir.php, copyfile.php, and fileslist.php.

Exploits (1)

exploitdb WORKING POC

by Pongtorn Angsuchotmetee_ Vittawat Masaree · textwebappsphp

https://www.exploit-db.com/exploits/46085

View Code ZIP pw:eip

The exploit demonstrates path traversal and unrestricted file upload vulnerabilities in Roxy Fileman 1.4.5. Path traversal allows accessing arbitrary files via manipulated variables in copydir.php, copyfile.php, and fileslist.php. Unrestricted file upload enables uploading malicious files with double extensions (e.g., shellcode.php.png) if php.ini is configured with AddHandler php7-script .php.

Classification

Working Poc 100%

Attack Type

Info Leak | Rce

Complexity

Trivial

Reliability

Reliable

Target: Roxy Fileman 1.4.5

No auth needed

Prerequisites: Access to the target application · PHP configuration allowing script execution for uploaded files

MITRE ATT&CK

T1006 - Direct Volume Access T1105 - Ingress Tool Transfer

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/151033/Roxy-Fileman-1.4.5-File-Upload-Directory-Traversal.html

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/46085/

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/166585/Roxy-File-Manager-1.4.5-PHP-File-Upload-Restriction-Bypass.html

Scores

CVSS v3 9.1

EPSS 0.2165

EPSS Percentile 97.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Details

CWE

CWE-22

Status published

Products (1)

roxyfileman/roxy_fileman 1.4.5

Published Mar 21, 2019

Tracked Since Feb 18, 2026