CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-65875

An arbitrary file upload vulnerability in the AddFont() function of FPDF v1.86 and earlier allows attackers to execute arbitrary code via uploading a crafted PHP file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 19.2%

CVSS Severity

CVSS v3 Score 8.8

References

http://www.fpdf.org
https://advisories.gitlab.com/pkg/composer/tecnickcom/tc-lib-pdf-font/CVE-2024-56520/
https://github.com/Setasign/FPDF

Products affected by CVE-2025-65875

Fpdf » Fpdf » Version: 1.8.6

cpe:2.3:a:fpdf:fpdf:1.8.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-65875

Products

Pricing

Contact Us