Dotclear 2.25.3 Authenticated Remote Code Execution via File Upload

Advisories

severity: high
date: December 19, 2025
Affecting: Dotclear 2.25.3
CVE: CVE-2023-53952
CWE: CWE-434 Unrestricted Upload of File with Dangerous Type
CVSS: 8.7
CVSS V4 Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
References: ExploitDB-51353
Official Product Homepage
Credit: Mirabbas Ağalarov
Description: Dotclear 2.25.3 contains a remote code execution vulnerability that allows authenticated attackers to upload malicious PHP files with .phar extension through the blog post creation interface. Attackers can upload files containing PHP system commands that execute when the uploaded file is accessed, enabling arbitrary code execution on the server.