CVE-2025-22137: Arbitrary File Overwrite via HTTP POST in Pingvin Share

9.8 CVSS

Description

Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an authenticated or unauthenticated (if anonymous shares are allowed) user to overwrite arbitrary files on the server, including sensitive system files, via HTTP POST requests. The issue has been patched in version 1.4.0.

Classification

CVE ID: CVE-2025-22137

CVSS Base Severity: CRITICAL

CVSS Base Score: 9.8

Affected Products

Vendor: stonith404

Product: pingvin-share

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 17.83% (scored less or equal to compared to others)

EPSS Date: 2025-02-06 (when was this score calculated)

References

https://github.com/stonith404/pingvin-share/security/advisories/GHSA-rjwx-p44f-mcrv
https://github.com/stonith404/pingvin-share/commit/6cf5c66fe2eda1e0a525edf7440d047fe2f0e35b
https://github.com/stonith404/pingvin-share/commit/c52ec7192080c402bd804e69be93dd88cc7c5c70

Timeline

2025-01-09 00:30:36 UTC
CVE

Arbitrary File Overwrite via HTTP POST in Pingvin Share