CVE-2025-63888

CRITICAL

ThinkPHP 5.0.24 - Remote Code Execution via Template File Inclusion

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-63888. PoCs published by AN5I.

AI-analyzed exploit summary This repository contains a Python-based exploit for CVE-2025-63888, a critical Remote Code Execution vulnerability in ThinkPHP 5.0.24. The exploit leverages file inclusion in the `read` function of `thinkphp/library/think/template/driver/File.php` to achieve arbitrary command execution.

Description

The read function in file thinkphp\library\think\template\driver\File.php in ThinkPHP 5.0.24 contains a remote code execution vulnerability.

Exploits (1)

nomisec WORKING POC 8 stars

by AN5I · poc

https://github.com/AN5I/cve-2025-63888-exploit

View Code ZIP pw:eip

This repository contains a Python-based exploit for CVE-2025-63888, a critical Remote Code Execution vulnerability in ThinkPHP 5.0.24. The exploit leverages file inclusion in the `read` function of `thinkphp/library/think/template/driver/File.php` to achieve arbitrary command execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: ThinkPHP 5.0.24

No auth needed

Prerequisites: Target running ThinkPHP 5.0.24 · Accessible vulnerable endpoint using `view()` function

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Mitigation, Third Party Advisory

https://gist.github.com/Master-0-0/0bf54cbb335b586b42b0db0db804e7aa

Permissions Required

https://www.yuque.com/lcc316/df0kgm/mglhbxltgbmzfh2s

Scores

CVSS v3 9.8

EPSS 0.0049

EPSS Percentile 37.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-98

Status published

Products (1)

thinkphp/thinkphp 5.0.24

Published Nov 20, 2025

Tracked Since Feb 18, 2026